cybernews

fuite de donnée enregistrée

Latest News


CVE-2025-50971 - AbanteCart Directory Traversal Vulnerability

CVE ID : CVE-2025-50971
Published : Aug. 26, 2025, 8:15 p.m. | 58 minutes ago
Description : Directory traversal vulnerability in AbanteCart version 1.4.2 allows unauthenticated attackers to gain access to sensitive system files via the template parameter to index.php.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 20:15:00 GMT

read more

CVE-2025-52353 - Badaso CMS Arbitrary Code Execution Vulnerability

CVE ID : CVE-2025-52353
Published : Aug. 26, 2025, 8:15 p.m. | 58 minutes ago
Description : An arbitrary code execution vulnerability in Badaso CMS 2.9.11. The Media Manager allows authenticated users to upload files containing embedded PHP code via the file-upload endpoint, bypassing content-type validation. When such a file is accessed via its URL, the server executes the PHP payload, enabling an attacker to run arbitrary system commands and achieve full compromise of the underlying host. This has been demonstrated by embedding a backdoor within a PDF and renaming it with a .php extension.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 20:15:00 GMT

read more

CVE-2025-55443 - Telpo MDM Plaintext Credentials and MQTT Server Exposure

CVE ID : CVE-2025-55443
Published : Aug. 26, 2025, 8:15 p.m. | 58 minutes ago
Description : Telpo MDM 1.4.6 thru 1.4.9 for Android contains sensitive administrator credentials and MQTT server connection details (IP/port) that are stored in plaintext within log files on the device's external storage. This allows attackers with access to these logs to: 1. Authenticate to the MDM web platform to execute administrative operations (device shutdown/factory reset/software installation); 2. Connect to the MQTT server to intercept/publish device data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 20:15:00 GMT

read more

CVE-2025-23307 - NVIDIA NeMo Curator Remote Code Execution Vulnerability

CVE ID : CVE-2025-23307
Published : Aug. 26, 2025, 7:15 p.m. | 1 hour, 58 minutes ago
Description : NVIDIA NeMo Curator for all platforms contains a vulnerability where a malicious file created by an attacker could allow code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 19:15:00 GMT

read more

CVE-2025-23312 - NVIDIA NeMo Framework Code Injection Vulnerability

CVE ID : CVE-2025-23312
Published : Aug. 26, 2025, 7:15 p.m. | 1 hour, 58 minutes ago
Description : NVIDIA NeMo Framework for all platforms contains a vulnerability in the retrieval services component, where malicious data created by an attacker could cause a code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 19:15:00 GMT

read more

CVE-2025-23313 - NVIDIA NeMo Framework NLP Component Code Injection Vulnerability

CVE ID : CVE-2025-23313
Published : Aug. 26, 2025, 7:15 p.m. | 1 hour, 58 minutes ago
Description : NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where malicious data created by an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 19:15:00 GMT

read more

CVE-2025-23314 - NVIDIA NeMo Framework NLP Code Injection Vulnerability

CVE ID : CVE-2025-23314
Published : Aug. 26, 2025, 7:15 p.m. | 1 hour, 58 minutes ago
Description : NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where malicious data created by an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 19:15:00 GMT

read more

CVE-2025-23315 - NVIDIA NeMo Framework Code Injection Vulnerability

CVE ID : CVE-2025-23315
Published : Aug. 26, 2025, 7:15 p.m. | 1 hour, 58 minutes ago
Description : NVIDIA NeMo Framework for all platforms contains a vulnerability in the export and deploy component, where malicious data created by an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 19:15:00 GMT

read more

CVE-2025-50975 - IPFire Stored XSS in Firewall CGI Interface

CVE ID : CVE-2025-50975
Published : Aug. 26, 2025, 7:15 p.m. | 1 hour, 58 minutes ago
Description : IPFire 2.29 web-based firewall interface (firewall.cgi) fails to sanitize several rule parameters such as PROT, SRC_PORT, TGT_PORT, dnatport, key, ruleremark, src_addr, std_net_tgt, and tgt_addr, allowing an authenticated administrator to inject persistent JavaScript. This stored XSS payload is executed whenever another admin views the firewall rules page, enabling session hijacking, unauthorized actions within the interface, or further internal pivoting. Exploitation requires only high-privilege GUI access, and the complexity of the attack is low.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 19:15:00 GMT

read more

CVE-2025-9478 - Google Chrome ANGLE Use-After-Free Vulnerability

CVE ID : CVE-2025-9478
Published : Aug. 26, 2025, 7:15 p.m. | 1 hour, 58 minutes ago
Description : Use after free in ANGLE in Google Chrome prior to 139.0.7258.154 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 19:15:00 GMT

read more

CVE-2025-50976 - IPFire 2 DNS Management Interface Reflected Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-50976
Published : Aug. 26, 2025, 6:15 p.m. | 2 hours, 58 minutes ago
Description : IPFire 2.29 DNS management interface (dns.cgi) fails to properly sanitize user-supplied input in the NAMESERVER, REMARK, and TLS_HOSTNAME query parameters, resulting in a reflected cross-site scripting (XSS) vulnerability.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 18:15:00 GMT

read more

CVE-2025-55298 - ImageMagick Format String Vulnerability

CVE ID : CVE-2025-55298
Published : Aug. 26, 2025, 6:15 p.m. | 2 hours, 58 minutes ago
Description : ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in InterpretImageFilename function where user input is directly passed to FormatLocaleString without proper sanitization. An attacker can overwrite arbitrary memory regions, enabling a wide range of attacks from heap overflow to remote code execution. This issue has been patched in versions 6.9.13-28 and 7.1.2-2.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 18:15:00 GMT

read more

CVE-2025-57803 - ImageMagick Heap Corruption Vulnerability

CVE ID : CVE-2025-57803
Published : Aug. 26, 2025, 6:15 p.m. | 2 hours, 58 minutes ago
Description : ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMagick's 32-bit build, a 32-bit integer overflow in the BMP encoder’s scanline-stride computation collapses bytes_per_line (stride) to a tiny value while the per-row writer still emits 3 × width bytes for 24-bpp images. The row base pointer advances using the (overflowed) stride, so the first row immediately writes past its slot and into adjacent heap memory with attacker-controlled bytes. This is a classic, powerful primitive for heap corruption in common auto-convert pipelines. This issue has been patched in versions 6.9.13-28 and 7.1.2-2.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 18:15:00 GMT

read more

CVE-2025-57818 - Firecrawl SSRF Vulnerability

CVE ID : CVE-2025-57818
Published : Aug. 26, 2025, 6:15 p.m. | 2 hours, 58 minutes ago
Description : Firecrawl turns entire websites into LLM-ready markdown or structured data. Prior to version 2.0.1, a server-side request forgery (SSRF) vulnerability was discovered in Firecrawl's webhook functionality. Authenticated users could configure a webhook to an internal URL and send POST requests with arbitrary headers, which may have allowed access to internal systems. This has been fixed in version 2.0.1. If upgrading is not possible, it is recommend to isolate Firecrawl from any sensitive internal systems.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 18:15:00 GMT

read more

CVE-2025-1494 - IBM Cognos Command Center Clickjacking Vulnerability

CVE ID : CVE-2025-1494
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-1994 - IBM Cognos Command Center Deserialization Vulnerability

CVE ID : CVE-2025-1994
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the BinaryFormatter function.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-2697 - IBM Cognos Command Center Open Redirect Vulnerability

CVE ID : CVE-2025-2697
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim.
Severity: 7.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-36729 - "Fortinet Web Interface Unauthorized Access and Privilege Escalation"

CVE ID : CVE-2025-36729
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : A non-primary administrator user with admin rights to the web interface but without shell access permissions can display configuration of the device including the master admin password. This vulnerability also allows the user to give themselves shell access with the root gid.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-50974 - IPFire Calamaris Log Exporter Remote Code Execution

CVE ID : CVE-2025-50974
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : The Calamaris log exporter CGI (/cgi-bin/logs.cgi/calamaris.dat) in IPFire 2.29 does not properly sanitize user-supplied input before incorporating parameter values into a shell command. An unauthenticated remote attacker can inject arbitrary OS commands by embedding shell metacharacters in any of the following parameters BYTE_UNIT, DAY_BEGIN, DAY_END, HIST_LEVEL, MONTH_BEGIN, MONTH_END, NUM_CONTENT, NUM_DOMAINS, NUM_HOSTS, NUM_URLS, PERF_INTERVAL, YEAR_BEGIN, YEAR_END.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-52184 - Helpy.io Cross Site Scripting (XSS)

CVE ID : CVE-2025-52184
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : Cross Site Scripting vulnerability in Helpy.io v.2.8.0 allows a remote attacker to escalate privileges via the New Topic Ticket funtion.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-55212 - ImageMagick Denial of Service Vulnerability

CVE ID : CVE-2025-55212
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon (":") to montage -geometry leads GetGeometry() to set width/height to 0. Later, ThumbnailImage() divides by these zero dimensions, triggering a crash (SIGFPE/abort), resulting in a denial of service. This issue has been patched in versions 6.9.13-28 and 7.1.2-2.
Severity: 3.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-57425 - SourceCodester FAQ Management System Stored XSS Vulnerability

CVE ID : CVE-2025-57425
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : A Stored Cross-Site Scripting (XSS) vulnerability in SourceCodester FAQ Management System 1.0 allows an authenticated attacker to inject malicious JavaScript into the 'question' and 'answer' fields via the update-faq.php endpoint.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-9491 - Microsoft Windows LNK File Remote Code Execution Vulnerability

CVE ID : CVE-2025-9491
Published : Aug. 26, 2025, 5:15 p.m. | 3 hours, 58 minutes ago
Description : Microsoft Windows LNK File UI Misrepresentation Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of .LNK files. Crafted data in an .LNK file can cause hazardous content in the file to be invisible to a user who inspects the file via the Windows-provided user interface. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25373.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 17:15:00 GMT

read more

CVE-2025-57810 - jsPDF High CPU Utilization Denial of Service Vulnerability

CVE ID : CVE-2025-57810
Published : Aug. 26, 2025, 4:15 p.m. | 4 hours, 58 minutes ago
Description : jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.2, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful PNG file that results in high CPU utilization and denial of service. The vulnerability was fixed in jsPDF 3.0.2.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 16:15:00 GMT

read more

CVE-2025-57813 - traP traQ Exposed OAuth Tokens in SQL Error Logs

CVE ID : CVE-2025-57813
Published : Aug. 26, 2025, 4:15 p.m. | 4 hours, 58 minutes ago
Description : traQ is a messenger application built for Digital Creators Club traP. Prior to version 3.25.0, a vulnerability exists where sensitive information, such as OAuth tokens, are recorded in log files when an error occurs during the execution of an SQL query. An attacker could intentionally trigger an SQL error by methods such as placing a high load on the database. This could allow an attacker who has the authority to view the log files to illicitly acquire the recorded sensitive information. This vulnerability has been patched in version 3.25.0. If upgrading is not possible, a temporary workaround involves reviewing access permissions for SQL error logs and strictly limiting access to prevent unauthorized users from viewing them.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 16:15:00 GMT

read more

CVE-2025-56432 - Nagios XI Cross-Site Scripting (XSS)

CVE ID : CVE-2025-56432
Published : Aug. 26, 2025, 4:15 p.m. | 3 hours, 56 minutes ago
Description : A cross-site scripting (XSS) vulnerability exists in Nagios XI 2024R2. The vulnerability allows remote attackers to execute arbitrary JavaScript in the context of a logged-in user's session via a specially crafted URL. The issue resides in a web component responsible for rendering performance-related data.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 16:15:00 GMT

read more

CVE-2025-52219 - SelectZero Data Observability Platform Open Redirect Vulnerability

CVE ID : CVE-2025-52219
Published : Aug. 26, 2025, 3:15 p.m. | 4 hours, 56 minutes ago
Description : SelectZero SelectZero Data Observability Platform before 2025.5.2 contains an Open Redirect vulnerability. Legacy UI fields can be used to create arbitrary external links via HTML Injection.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-6366 - WordPress Event List Plugin Privilege Escalation Vulnerability

CVE ID : CVE-2025-6366
Published : Aug. 26, 2025, 3:15 p.m. | 4 hours, 56 minutes ago
Description : The Event List plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.0.4. This is due to the plugin not properly validating a user's capabilities prior to updating their profile in the el_update_profile() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change their capabilities to those of an administrator.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-25732 - Kapsch TrafficCom RIS-9160 RIS-9260 Roadside Units EEPROM Access Control Bypass Privilege Escalation

CVE ID : CVE-2025-25732
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : Incorrect access control in the EEPROM component of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows attackers to replace password hashes stored in the EEPROM with hashes of their own, leading to the escalation of privileges to root.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-25733 - Kapsch TrafficCom RIS-9160 RIS-9260 Roadside Units SPI Flash Chip Access Control Bypass

CVE ID : CVE-2025-25733
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : Incorrect access control in the SPI Flash Chip of Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 allows physically proximate attackers to arbitrarily modify SPI flash regions, leading to a degradation of the security posture of the device.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-25734 - Kapsch TrafficCom RIS-9160 RIS-9260 Roadside Units (RSUs) Boot Process Privilege Escalation

CVE ID : CVE-2025-25734
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 was discovered to contain an unauthenticated EFI shell which allows attackers to execute arbitrary code or escalate privileges during the boot process.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-25735 - Kapsch TrafficCom RIS-9160 RIS-9260 Roadside Units (RSUs) SPI Flash Modification Vulnerability

CVE ID : CVE-2025-25735
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to lack SPI Protected Range Registers (PRRs), allowing attackers with software running on the system to modify SPI flash in real-time.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-25736 - Kapsch TrafficCom RIS-9260 RSU Android Debug Bridge Root Access

CVE ID : CVE-2025-25736
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : Kapsch TrafficCom RIS-9260 RSU LEO v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to contain Android Debug Bridge (ADB) pre-installed (/mnt/c3platpersistent/opt/platform-tools/adb) and enabled by default, allowing unauthenticated root shell access to the cellular modem via the default 'kapsch' user.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-25737 - Kapsch TrafficCom RIS-9160 RIS-9260 Roadside Units (RSUs) Unprotected BIOS Authentication

CVE ID : CVE-2025-25737
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : Kapsch TrafficCom RIS-9160 & RIS-9260 Roadside Units (RSUs) v3.2.0.829.23, v3.8.0.1119.42, and v4.6.0.1211.28 were discovered to lack secure password requirements for its BIOS Supervisor and User accounts, allowing attackers to bypass authentication via a bruteforce attack.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-52035 - NotesCMS Stored XSS Vulnerability

CVE ID : CVE-2025-52035
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : A vulnerability in NotesCMS and specifically in the page /index.php?route=notes. The manipulation of the title of the service descriptions leads to a stored XSS vulnerability. The issue was confirmed to be present in the source code as of commit 7d821a0f028b0778b245b99ab3d3bff1ac10e2d3 (dated 2024-05-08) and was fixed in commit 95322c5121dbd7070f3bd54f2848079654a0a8ea (dated 2025-03-31). The attack can be launched remotely.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-52036 - NotesCMS Stored XSS Vulnerability

CVE ID : CVE-2025-52036
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : A vulnerability has been found in NotesCMS and classified as medium. Affected by this vulnerability is the page /index.php?route=categories. The manipulation of the title of the service descriptions leads to a stored XSS vulnerability. The issue was confirmed to be present in the source code as of commit 7d821a0f028b0778b245b99ab3d3bff1ac10e2d3 (dated 2024-05-08), and was fixed in commit 95322c5121dbd7070f3bd54f2848079654a0a8ea (dated 2025-03-31). The attack can be launched remotely. CWE Definition of the Vulnerability: CWE-79.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-52037 - NotesCMS Stored XSS Vulnerability

CVE ID : CVE-2025-52037
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : A vulnerability has been found in NotesCMS and classified as medium. Affected by this vulnerability is the page /index.php?route=sites. The manipulation of the title of the service descriptions leads to a stored XSS vulnerability. The issue was confirmed to be present in the source code as of commit 7d821a0f028b0778b245b99ab3d3bff1ac10e2d3 (dated 2024-05-08), and was fixed in commit 95322c5121dbd7070f3bd54f2848079654a0a8ea (dated 2025-03-31). The attack can be launched remotely. CWE Definition of the Vulnerability: CWE-79.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-52217 - SelectZero Data Observability Platform HTML Injection Vulnerability

CVE ID : CVE-2025-52217
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2025-52218 - SelectZero Data Observability Platform Content Spoofing Vulnerability

CVE ID : CVE-2025-52218
Published : Aug. 26, 2025, 3:15 p.m. | 3 hours, 7 minutes ago
Description : SelectZero Data Observability Platform before 2025.5.2 is vulnerable to Content Spoofing / Text Injection. Improper sanitization of unspecified parameters allows attackers to inject arbitrary text or limited HTML into the login page.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2024-39335 - Mahara Information Disclosure Vulnerability

CVE ID : CVE-2024-39335
Published : Aug. 26, 2025, 3:15 p.m. | 1 hour, 21 minutes ago
Description : Supported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23.04.6 are vulnerable to information being disclosed to an institution administrator under certain conditions via the 'Current submissions' page: Administration -> Groups -> Submissions.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 15:15:00 GMT

read more

CVE-2024-47853 - Mahara LTI Privilege Escalation Vulnerability

CVE ID : CVE-2024-47853
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : An issue was discovered in Mahara 23.04.8 and 24.04.4. Attackers may utilize escalation of privileges in certain cases when logging into Mahara with Learning Tools Interoperability (LTI).
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-29992 - Mahara Database Connection Information Disclosure

CVE ID : CVE-2025-29992
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : Mahara before 24.04.9 exposes database connection information if the database becomes unreachable, e.g., due to the database server being temporarily down or too busy.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-50753 - Mitrastar GPT-2741GNAC-N2 SSH Command Injection Vulnerability

CVE ID : CVE-2025-50753
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : Mitrastar GPT-2741GNAC-N2 devices are provided with access through ssh into a restricted default shell.The command "deviceinfo show file" is supposed to be used from restricted shell to show files and directories. By providing " /bin/sh" (quotes included) to the argument of this command will drop a root shell.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-55526 - n8n-workflows Directory Traversal Vulnerability

CVE ID : CVE-2025-55526
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : n8n-workflows Main Commit ee25413 allows attackers to execute a directory traversal via the download_workflow function within api_server.py
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-8424 - Citrix NetScaler ADC and Gateway Unauthenticated Remote Command Injection

CVE ID : CVE-2025-8424
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : Improper access control on the NetScaler Management Interface in NetScaler ADC and NetScaler Gateway when an attacker can get access to the appliance NSIP, Cluster Management IP or local GSLB Site IP or SNIP with Management Access
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-9481 - Linksys Router Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9481
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function setIpv6 of the file /goform/setIpv6. The manipulation of the argument tunrd_Prefix leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-9482 - "Linksys Wireless Router Stack-Based Buffer Overflow Vulnerability"

CVE ID : CVE-2025-9482
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : A vulnerability was detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This impacts the function portRangeForwardAdd of the file /goform/portRangeForwardAdd. The manipulation of the argument ruleName/schedule/inboundFilter/TCPPorts/UDPPorts results in stack-based buffer overflow. The attack can be executed remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-9483 - Linksys RE Series Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9483
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 21 minutes ago
Description : A flaw has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected is the function singlePortForwardAdd of the file /goform/singlePortForwardAdd. This manipulation of the argument ruleName/schedule/inboundFilter causes stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2024-45753 - Mahara External RSS Feed Block Cross-Site Scripting (XSS)

CVE ID : CVE-2024-45753
Published : Aug. 26, 2025, 2:15 p.m. | 2 hours, 11 minutes ago
Description : In Mahara 23.04.8 and 24.04.4, the external RSS feed block can cause XSS if the external feed XML has a malicious value for the link attribute.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 14:15:00 GMT

read more

CVE-2025-8700 - Invoice Ninja macOS Debugging Entitlement Vulnerability

CVE ID : CVE-2025-8700
Published : Aug. 26, 2025, 1:15 p.m. | 3 hours, 11 minutes ago
Description : Invoice Ninja's configuration on macOS, specifically the presence of entitlement "com.apple.security.get-task-allow", allows local attackers with unprivileged access (e.g. via a malicious application) to attach a debugger, read or modify the process memory, inject code in the application's context despite being signed with Hardened Runtime and bypass Transparency, Consent, and Control (TCC). Acquired resource access is limited to previously granted permissions by the user. Access to other resources beyond granted permissions requires user interaction with a system prompt asking for permission. According to Apple documentation, when a non-root user runs an app with the debugging tool entitlement, the system presents an authorization dialog asking for a system administrator's credentials. Since there is no prompt when the target process has "get-task-allow" entitlement, the presence of this entitlement was decided to be treated as a vulnerability because it removes one step needed to perform an attack. This issue was fixed in version 5.0.175
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-9190 - "Cursor macOS Local Privilege Escalation (Unauthenticated Code Execution)"

CVE ID : CVE-2025-9190
Published : Aug. 26, 2025, 1:15 p.m. | 3 hours, 11 minutes ago
Description : The configuration of Cursor on macOS, specifically the "RunAsNode" fuse enabled, allows a local attacker with unprivileged access to execute arbitrary code that inherits Cursor TCC (Transparency, Consent, and Control) permissions. Acquired resource access is limited to previously granted permissions by the user. Accessing other resources beyond previously granted TCC permissions will prompt the user for approval in the name of Cursor, potentially disguising attacker's malicious intent. This issue was detected in 15.4.1 version of Cursor. Project maintainers decided not to fix this issue, because a scenario including a local attacker falls outside their defined threat model.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-38676 - "AMD IOMMU Stack Buffer Overflow"

CVE ID : CVE-2025-38676
Published : Aug. 26, 2025, 1:15 p.m. | 1 hour, 21 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Avoid stack buffer overflow from kernel cmdline While the kernel command line is considered trusted in most environments, avoid writing 1 byte past the end of "acpiid" if the "str" argument is maximum length.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-53811 - Mosh-Pro macOS RunAsNode Arbitrary Code Execution

CVE ID : CVE-2025-53811
Published : Aug. 26, 2025, 1:15 p.m. | 1 hour, 21 minutes ago
Description : The configuration of Mosh-Pro on macOS, specifically the "RunAsNode" fuse enabled, allows a local attacker with unprivileged access to execute arbitrary code that inherits Mosh-Pro TCC (Transparency, Consent, and Control) permissions.  Acquired resource access is limited to previously granted permissions by the user. Accessing other resources beyond previously granted TCC permissions will prompt the user for approval in the name of Mosh-Pro, potentially disguising attacker's malicious intent.  This issue was detected in 1.3.2 version of Mosh-Pro. Since authors did not respond to messages from CNA, patching status is unknown.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-53813 - Nozbe macOS Arbitrary Code Execution (TCC Permission Escalation)

CVE ID : CVE-2025-53813
Published : Aug. 26, 2025, 1:15 p.m. | 1 hour, 21 minutes ago
Description : The configuration of Nozbe on macOS, specifically the "RunAsNode" fuse enabled, allows a local attacker with unprivileged access to execute arbitrary code that inherits Nozbe TCC (Transparency, Consent, and Control) permissions.  Acquired resource access is limited to previously granted permissions by the user. Access to other resources beyond granted-permissions requires user interaction with a system prompt asking for permission. This issue was fixed in version 2025.11 of Nozbe.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-7775 - Citrix NetScaler Remote Code Execution and Denial of Service Vulnerability

CVE ID : CVE-2025-7775
Published : Aug. 26, 2025, 1:15 p.m. | 1 hour, 21 minutes ago
Description : Memory overflow vulnerability leading to Remote Code Execution and/or Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server (OR) NetScaler ADC and NetScaler Gateway 13.1, 14.1, 13.1-FIPS and NDcPP: LB virtual servers of type (HTTP, SSL or HTTP_QUIC) bound with IPv6 services or servicegroups bound with IPv6 servers (OR) NetScaler ADC and NetScaler Gateway 13.1, 14.1, 13.1-FIPS and NDcPP: LB virtual servers of type (HTTP, SSL or HTTP_QUIC) bound with DBS IPv6 services or servicegroups bound with IPv6 DBS servers (OR) CR virtual server with type HDX
Severity: 9.2 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-7776 - Citrix NetScaler Memory Overflow Denial of Service

CVE ID : CVE-2025-7776
Published : Aug. 26, 2025, 1:15 p.m. | 1 hour, 21 minutes ago
Description : Memory overflow vulnerability leading to unpredictable or erroneous behavior and Denial of Service in NetScaler ADC and NetScaler Gateway when NetScaler is configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) with PCoIP Profile bounded to it
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-8597 - MacVim macOS Local Debugger Bypass

CVE ID : CVE-2025-8597
Published : Aug. 26, 2025, 1:15 p.m. | 1 hour, 21 minutes ago
Description : MacVim's configuration on macOS, specifically the presence of entitlement "com.apple.security.get-task-allow", allows local attackers with unprivileged access (e.g. via a malicious application) to attach a debugger, read or modify the process memory, inject code in the application's context despite being signed with Hardened Runtime and bypass Transparency, Consent, and Control (TCC). Acquired resource access is limited to previously granted permissions by the user. Access to other resources beyond granted permissions requires user interaction with a system prompt asking for permission. According to Apple documentation, when a non-root user runs an app with the debugging tool entitlement, the system presents an authorization dialog asking for a system administrator's credentials. Since there is no prompt when the target process has "get-task-allow" entitlement, the presence of this entitlement was decided to be treated as a vulnerability because it removes one step needed to perform an attack. This issue was fixed in build r181.2
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 13:15:00 GMT

read more

CVE-2025-1501 - CMC Unauthenticated Access Control Bypass

CVE ID : CVE-2025-1501
Published : Aug. 26, 2025, 11:15 a.m. | 3 hours, 21 minutes ago
Description : An access control vulnerability was discovered in the Request Trace and Download Trace functionalities of CMC before 25.1.0 due to a specific access restriction not being properly enforced for users with limited privileges. An authenticated user with limited privileges can request and download trace files due to improper access restrictions, potentially exposing unauthorized network data.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 11:15:00 GMT

read more

CVE-2025-44002 - TeamViewer RCE

CVE ID : CVE-2025-44002
Published : Aug. 26, 2025, 11:15 a.m. | 3 hours, 21 minutes ago
Description : Race Condition in the Directory Validation Logic in the TeamViewer Full Client and Host prior version 15.69 on Windows allows a local non-admin user to create arbitrary files with SYSTEM privileges, potentially leading to a denial-of-service condition, via symbolic link manipulation during directory verification.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 11:15:00 GMT

read more

CVE-2025-29901 - Asustor File Station NULL Pointer Dereference Denial of Service

CVE ID : CVE-2025-29901
Published : Aug. 26, 2025, 10:15 a.m. | 4 hours, 21 minutes ago
Description : A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following version: File Station 5 5.5.6.4933 and later
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 10:15:00 GMT

read more

CVE-2025-48108 - Mojoomla School Management Missing Authorization Vulnerability

CVE ID : CVE-2025-48108
Published : Aug. 26, 2025, 10:15 a.m. | 4 hours, 21 minutes ago
Description : Missing Authorization vulnerability in Mojoomla School Management allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects School Management: from n/a through 93.2.0.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 10:15:00 GMT

read more

CVE-2025-6247 - "WordPress Automatic Plugin CSRF Vulnerability"

CVE ID : CVE-2025-6247
Published : Aug. 26, 2025, 9:15 a.m. | 5 hours, 21 minutes ago
Description : The WordPress Automatic Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.118.0. This is due to missing or incorrect nonce validation on one of its functions. This makes it possible for unauthenticated attackers to update campaigns and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Severity: 4.7 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 09:15:00 GMT

read more

CVE-2025-53418 - Delta Electronics COMMGR Stack-based Buffer Overflow

CVE ID : CVE-2025-53418
Published : Aug. 26, 2025, 7:15 a.m. | 7 hours, 21 minutes ago
Description : Delta Electronics COMMGR has Stack-based Buffer Overflow vulnerability.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 07:15:00 GMT

read more

CVE-2025-53419 - Delta Electronics COMMGR Code Injection Vulnerability

CVE ID : CVE-2025-53419
Published : Aug. 26, 2025, 7:15 a.m. | 7 hours, 21 minutes ago
Description : Delta Electronics COMMGR has Code Injection vulnerability.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 07:15:00 GMT

read more

CVE-2025-57704 - Delta Electronics EIP Builder XML External Entity Information Disclosure

CVE ID : CVE-2025-57704
Published : Aug. 26, 2025, 7:15 a.m. | 7 hours, 21 minutes ago
Description : Delta Electronics EIP Builder version 1.11 is vulnerable to a File Parsing XML External Entity Processing Information Disclosure Vulnerability.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 07:15:00 GMT

read more

CVE-2024-8860 - Tourfic for WordPress Unauthenticated Data Modification Vulnerability

CVE ID : CVE-2024-8860
Published : Aug. 26, 2025, 7:15 a.m. | 7 hours, 3 minutes ago
Description : The Tourfic plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the tf_order_status_email_resend_function, tf_visitor_details_edit_function, tf_checkinout_details_edit_function, tf_order_status_edit_function, tf_order_bulk_action_edit_function, tf_remove_room_order_ids, and tf_delete_old_review_fields functions in all versions up to, and including, 2.14.5. This makes it possible for authenticated attackers, with subscriber-level access and above, to resend order status emails, update visitor/order details, edit check-in/out details, edit order status, perform bulk order status updates, remove room order IDs, and delete old review fields, respectively.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 07:15:00 GMT

read more

Les derniers articles scientifiques co-écrits par des agents issus des labos de l’ANSSI

Les derniers articles scientifiques co-écrits par des agents issus des labos de l’ANSSI

anssiadm
Découvrez les parutions scientifiques les plus récentes auxquelles ont pris part différents agents de l’ANSSI issus des laboratoires de la division Scientifique et Technique (DST).

Pour mener à bien ses missions, l’ANSSI se doit d'entretenir au sein de ses équipes un niveau élevé d’expertise dans l’ensemble des domaines scientifiques et techniques pertinents pour son action. La pratique de la recherche est essentielle pour maintenir et développer l’expertise et les connaissances qui font la réputation de l’ANSSI.

Nos agents publient des articles de recherche dans des revues scientifiques, présentent leurs travaux dans des conférences nationales ou internationales, et échangent régulièrement avec leurs pairs dans des colloques.

Ces contributions, nombreuses, relèvent de domaines aussi variés que la cryptographie, les attaques par canaux auxiliaires, les interférences électromagnétiques, la sécurité des langages ou encore la sécurité des architectures informatiques fixes ou mobiles. Elles permettent aux agents de l’ANSSI d’entretenir leur expertise et d’être reconnus au sein des diverses communautés scientifiques.

Découvrez ci-dessous les derniers articles scientifiques auxquels ont participé les agents issus des différents laboratoires de l’ANSSI qui constituent la division Scientifique et Technique (DST) :

  • « A Tale of Two Worlds, a Formal Story of WireGuard Hybridization » (à lire ici)
    • Cet article concerne la thématique de la cryptographie post-quantique.
    • Il a été co-écrit par Sylvain Ruhault (ANSSI), Abdul Rahman Taleb (ANSSI), Pascal Lafourcade (Université Clermont Auvergne) et Dhekra Mahmoud (Université Clermont Auvergne).
    • Il a été présenté lors de la 34e conférence Usenix Security Symposium qui s’est déroulée à Seattle, aux Etats-Unis, du 13 au 15 août 2025.
       
  • « A Comprehensive Formal Security Analysis of OPC UA » (à lire ici)
    • Cet article concerne la sécurisation des systèmes industriels.
    • Il a été co-écrit par Vincent Diemunsch (ANSSI et Université de Lorraine), Lucca Hirschi (Université de Lorraine) et Steve Kremer (Université de Lorraine)
    • Il a été présenté lors de la 34e conférence Usenix Security Symposium qui s’est déroulée à Seattle, aux Etats-Unis, du 13 au 15 août 2025.
       
  • « Improved resultant attack against arithmetization-oriented primitives » (à lire ici)
    • Cet article présente une amélioration des meilleures attaques algébriques connues contre diverses primitives symétriques orientées arithmétisation et notamment de la « FreeLunch attack » qui avait été publiée par Augustin Bariant (ANSSI) à la précédente édition de la conférence CRYPTO en 2024.
    • Il a été co-écrit par Augustin Bariant (ANSSI), Aurélien Bœuf (INRIA), Pierre Briaud (Simula UiB, Norvège), Maël Hostettler (Télécom SudParis), Morten Øygarden (Simula UiB, Norvège) et Havard Raddum (Simula UiB, Norvège).
    • Il a été présenté au cours de la conférence CRYPTO 2025 qui s’est déroulée à Santa Barbara, aux Etats-Unis, du 17 au 21 août 2025.
       
  • « Optimal dimensionality reduction using conditional variational auto-encoder » (à lire ici)
    • Cet article propose une nouvelle méthode d’analyse par canaux auxiliaires utilisant des réseaux de neurone.
    • Il a été co-écrit par Benoit Gérard (ANSSI), Guénaël Renault (ANSSI), Sana Boussam (Thales), Mathieu Carbone (Thales) et Gabriel Zaid (Thales).
    • Il sera présenté au cours de la conférence on Cryptographic Hardware and Embedded Systems (CHES) 2025 qui se tiendra à Kuala Lumpur, en Malaisie, du 14 au 18 septembre 2025.

Tue, 26 Aug 2025 07:00:00 GMT

read more

CVE-2025-41702 - EgOS WebGUI Cryptographic Key Disclosure Vulnerability

CVE ID : CVE-2025-41702
Published : Aug. 26, 2025, 6:15 a.m. | 8 hours, 3 minutes ago
Description : The JWT secret key is embedded in the egOS WebGUI backend and is readable to the default user. An unauthenticated remote attacker can generate valid HS256 tokens and bypass authentication/authorization due to the use of hard-coded cryptographic key.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 06:15:00 GMT

read more

CVE-2025-9475 - SourceCodester Human Resource Information System Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9475
Published : Aug. 26, 2025, 6:15 a.m. | 8 hours, 3 minutes ago
Description : A flaw has been found in SourceCodester Human Resource Information System 1.0. Affected by this vulnerability is an unknown functionality of the file /Admin_Dashboard/process/editemployee_process.php. This manipulation of the argument employee_file201 causes unrestricted upload. The attack may be initiated remotely. The exploit has been published and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 06:15:00 GMT

read more

CVE-2025-9476 - SourceCodester Human Resource Information System Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9476
Published : Aug. 26, 2025, 6:15 a.m. | 8 hours, 3 minutes ago
Description : A vulnerability has been found in SourceCodester Human Resource Information System 1.0. Affected by this issue is some unknown functionality of the file /Superadmin_Dashboard/process/editemployee_process.php. Such manipulation of the argument employee_file201 leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 06:15:00 GMT

read more

CVE-2025-5931 - Dokan Pro WordPress Privilege Escalation via Account Takeover

CVE ID : CVE-2025-5931
Published : Aug. 26, 2025, 5:15 a.m. | 9 hours, 3 minutes ago
Description : The Dokan Pro plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 4.0.5. This is due to the plugin not properly validating a user's identity prior to updating their password during a staff password reset. This makes it possible for authenticated attackers, with vendor-level access and above, to elevate their privilege to the level of a staff member and then change arbitrary user passwords, including those of administrators in order to gain access to their accounts. By default, the plugin allows customers to become vendors.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 05:15:00 GMT

read more

CVE-2025-9472 - iSourcecode Apartment Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9472
Published : Aug. 26, 2025, 5:15 a.m. | 9 hours, 3 minutes ago
Description : A vulnerability was found in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /owner_utility/add_owner_utility.php. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 05:15:00 GMT

read more

CVE-2025-9473 - SourceCodester Online Bank Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9473
Published : Aug. 26, 2025, 5:15 a.m. | 9 hours, 3 minutes ago
Description : A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. This impacts an unknown function of the file /feedback.php. The manipulation of the argument msg leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 05:15:00 GMT

read more

CVE-2025-9474 - Mihomo Party Local File Inclusion Vulnerability

CVE ID : CVE-2025-9474
Published : Aug. 26, 2025, 5:15 a.m. | 9 hours, 3 minutes ago
Description : A vulnerability was detected in Mihomo Party up to 1.8.1 on macOS. Affected is the function enableSysProxy of the file src/main/sys/sysproxy.ts of the component Socket Handler. The manipulation results in creation of temporary file with insecure permissions. The attack requires a local approach. This attack is characterized by high complexity. The exploitability is told to be difficult. The exploit is now public and may be used.
Severity: 4.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 05:15:00 GMT

read more

CVE-2025-9471 - iSourcecode Apartment Management System SQL Injection

CVE ID : CVE-2025-9471
Published : Aug. 26, 2025, 4:16 a.m. | 10 hours, 3 minutes ago
Description : A vulnerability has been found in itsourcecode Apartment Management System 1.0. This vulnerability affects unknown code of the file /maintenance/add_maintenance_cost.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 04:16:00 GMT

read more

CVE-2025-9470 - iSourcecode Apartment Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9470
Published : Aug. 26, 2025, 4:16 a.m. | 8 hours, 51 minutes ago
Description : A flaw has been found in itsourcecode Apartment Management System 1.0. This affects an unknown part of the file /management/add_m_committee.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 04:16:00 GMT

read more

CVE-2025-9172 - WordPress Vibes Plugin SQL Injection Vulnerability

CVE ID : CVE-2025-9172
Published : Aug. 26, 2025, 4:15 a.m. | 8 hours, 51 minutes ago
Description : The Vibes plugin for WordPress is vulnerable to time-based SQL Injection via the ‘resource’ parameter in all versions up to, and including, 2.2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 04:15:00 GMT

read more

CVE-2025-9468 - iSourcecode Apartment Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9468
Published : Aug. 26, 2025, 4:15 a.m. | 8 hours, 51 minutes ago
Description : A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /bill/add_bill.php. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 04:15:00 GMT

read more

CVE-2025-9469 - iSourcecode Apartment Management System SQL Injection

CVE ID : CVE-2025-9469
Published : Aug. 26, 2025, 4:15 a.m. | 8 hours, 51 minutes ago
Description : A vulnerability was detected in itsourcecode Apartment Management System 1.0. Affected by this issue is some unknown functionality of the file /fund/add_fund.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 04:15:00 GMT

read more

CVE-2025-9443 - Tenda CH22 Buffer Overflow Vulnerability

CVE ID : CVE-2025-9443
Published : Aug. 26, 2025, 3:15 a.m. | 9 hours, 51 minutes ago
Description : A flaw has been found in Tenda CH22 1.0.0.1. This vulnerability affects the function formeditUserName of the file /goform/editUserName. Executing manipulation of the argument new_account can lead to buffer overflow. It is possible to launch the attack remotely. The exploit has been published and may be used.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 03:15:00 GMT

read more

CVE-2025-9444 - "1000projects Online Project Report Submission and Evaluation System SQL Injection Vulnerability"

CVE ID : CVE-2025-9444
Published : Aug. 26, 2025, 3:15 a.m. | 9 hours, 51 minutes ago
Description : A vulnerability has been found in 1000projects Online Project Report Submission and Evaluation System 1.0. This issue affects some unknown processing of the file /admin/controller/delete_group_student.php. The manipulation of the argument batch_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 03:15:00 GMT

read more

CVE-2025-9461 - Diyhi BBS File Compression Handler Information Disclosure Vulnerability

CVE ID : CVE-2025-9461
Published : Aug. 26, 2025, 3:15 a.m. | 9 hours, 51 minutes ago
Description : A weakness has been identified in diyhi bbs up to 6.8. The impacted element is an unknown function of the file src/main/java/cms/web/action/filePackage/FilePackageManageAction.java of the component File Compression Handler. This manipulation of the argument idGroup causes information disclosure. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 03:15:00 GMT

read more

CVE-2025-9440 - Apache 1000projects Online Project Report Submission and Evaluation System Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9440
Published : Aug. 26, 2025, 2:15 a.m. | 10 hours, 51 minutes ago
Description : A security vulnerability has been detected in 1000projects Online Project Report Submission and Evaluation System 1.0. Affected by this issue is some unknown functionality of the file /admin/add_title.php. Such manipulation of the argument Title leads to cross site scripting. The attack may be performed from a remote location. The exploit has been disclosed publicly and may be used.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 02:15:00 GMT

read more

CVE-2025-9438 - 1000projects Online Project Report Submission and Evaluation System Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9438
Published : Aug. 26, 2025, 2:15 a.m. | 8 hours, 48 minutes ago
Description : A security flaw has been discovered in 1000projects Online Project Report Submission and Evaluation System 1.0. Affected is an unknown function of the file /admin/add_student.php. The manipulation of the argument address results in cross site scripting. The attack can be executed remotely. The exploit has been released to the public and may be exploited.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 02:15:00 GMT

read more

CVE-2025-9439 - Apache 1000projects Online Project Report Submission and Evaluation System Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9439
Published : Aug. 26, 2025, 2:15 a.m. | 8 hours, 48 minutes ago
Description : A weakness has been identified in 1000projects Online Project Report Submission and Evaluation System 1.0. Affected by this vulnerability is an unknown functionality of the file /rse/admin/edit_faculty.php?id=2. This manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 02:15:00 GMT

read more

CVE-2025-8447 - GitHub Enterprise Server Code Access Bypass

CVE ID : CVE-2025-8447
Published : Aug. 26, 2025, 2:15 a.m. | 6 hours, 45 minutes ago
Description : An improper access control vulnerability was identified in GitHub Enterprise Server that allowed users with access to any repository to retrieve limited code content from another repository by creating a diff between the repositories. To exploit this vulnerability, an attacker needed to know the name of a private repository along with its branches, tags, or commit SHAs that they could use to trigger compare/diff functionality and retrieve limited code without proper authorization. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.18, and was fixed in versions 3.14.17, 3.15.12, 3.16.8 and 3.17.5. This vulnerability was reported via the GitHub Bug Bounty program.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 02:15:00 GMT

read more

CVE-2025-9433 - Mtons MBlog Remote Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9433
Published : Aug. 26, 2025, 2:15 a.m. | 6 hours, 45 minutes ago
Description : A vulnerability was found in mtons mblog up to 3.5.0. The impacted element is an unknown function of the file /admin/user/list of the component Admin Panel. Performing manipulation of the argument Name results in cross site scripting. The attack may be initiated remotely. The exploit has been made public and could be used.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 02:15:00 GMT

read more

CVE-2025-9434 - "1000projects Online Project Report Submission and Evaluation System Cross-Site Scripting Vulnerability"

CVE ID : CVE-2025-9434
Published : Aug. 26, 2025, 2:15 a.m. | 6 hours, 45 minutes ago
Description : A vulnerability was determined in 1000projects Online Project Report Submission and Evaluation System 1.0. This affects an unknown function of the file /admin/edit_title.php?id=1. Executing manipulation of the argument desc can lead to cross site scripting. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 02:15:00 GMT

read more

CVE-2025-9430 - Mtons Mblog Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9430
Published : Aug. 26, 2025, 1:15 a.m. | 5 hours, 3 minutes ago
Description : A vulnerability was detected in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /admin/options/update. The manipulation of the argument input results in cross site scripting. It is possible to launch the attack remotely. The exploit is now public and may be used.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 01:15:00 GMT

read more

CVE-2025-9431 - Mtons MBlog Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9431
Published : Aug. 26, 2025, 1:15 a.m. | 5 hours, 3 minutes ago
Description : A flaw has been found in mtons mblog up to 3.5.0. Impacted is an unknown function of the file /search. This manipulation of the argument kw causes cross site scripting. The attack can be initiated remotely. The exploit has been published and may be used.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 01:15:00 GMT

read more

CVE-2025-9432 - Mtons MBlog Cross Site Scripting Vulnerability

CVE ID : CVE-2025-9432
Published : Aug. 26, 2025, 1:15 a.m. | 5 hours, 3 minutes ago
Description : A vulnerability has been found in mtons mblog up to 3.5.0. The affected element is an unknown function of the file /admin/post/list of the component Admin Panel. Such manipulation of the argument Title leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 01:15:00 GMT

read more

CVE-2025-9429 - Mtons Mblog Cross Site Scripting Vulnerability

CVE ID : CVE-2025-9429
Published : Aug. 26, 2025, 12:15 a.m. | 6 hours, 3 minutes ago
Description : A security vulnerability has been detected in mtons mblog up to 3.5.0. This vulnerability affects unknown code of the file /post/submit of the component Post Handler. The manipulation of the argument content/title/ leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 26 Aug 2025 00:15:00 GMT

read more

CVE-2025-9424 - "Ruijie WS7204-A Remote File Inclusion Vulnerability"

CVE ID : CVE-2025-9424
Published : Aug. 25, 2025, 11:15 p.m. | 7 hours, 3 minutes ago
Description : A vulnerability was identified in Ruijie WS7204-A 2017.06.15. Affected by this vulnerability is an unknown functionality of the file /itbox_pi/branch_import.php?a=branch_list. Such manipulation of the argument province leads to os command injection. The attack can be executed remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 23:15:00 GMT

read more

CVE-2025-9425 - iSourcecode Online Tour and Travel Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9425
Published : Aug. 25, 2025, 11:15 p.m. | 7 hours, 3 minutes ago
Description : A security flaw has been discovered in itsourcecode Online Tour and Travel Management System 1.0. Affected by this issue is some unknown functionality of the file /enquiry.php. Performing manipulation of the argument pid results in sql injection. The attack is possible to be carried out remotely. The exploit has been released to the public and may be exploited.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 23:15:00 GMT

read more

CVE-2025-9426 - iSourcecode Online Tour and Travel Management System SQL Injection

CVE ID : CVE-2025-9426
Published : Aug. 25, 2025, 11:15 p.m. | 7 hours, 3 minutes ago
Description : A weakness has been identified in itsourcecode Online Tour and Travel Management System 1.0. This affects an unknown part of the file /package.php. Executing manipulation of the argument subcatid can lead to sql injection. The attack may be performed from a remote location. The exploit has been made available to the public and could be exploited.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 23:15:00 GMT

read more

CVE-2025-9423 - Campcodes Online Water Billing System SQL Injection

CVE ID : CVE-2025-9423
Published : Aug. 25, 2025, 11:15 p.m. | 5 hours, 16 minutes ago
Description : A vulnerability was determined in Campcodes Online Water Billing System 1.0. Affected is an unknown function of the file /editecex.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 23:15:00 GMT

read more

CVE-2025-9420 - iSourcecode Apartment Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9420
Published : Aug. 25, 2025, 10:15 p.m. | 6 hours, 16 minutes ago
Description : A flaw has been found in itsourcecode Apartment Management System 1.0. The impacted element is an unknown function of the file /floor/addfloor.php. Executing manipulation of the argument hdnid can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 22:15:00 GMT

read more

CVE-2025-9421 - iSourcecode Apartment Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9421
Published : Aug. 25, 2025, 10:15 p.m. | 6 hours, 16 minutes ago
Description : A vulnerability has been found in itsourcecode Apartment Management System 1.0. This affects an unknown function of the file /complain/addcomplain.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 22:15:00 GMT

read more

CVE-2025-9422 - Samarium OITcode Team Image Handler Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9422
Published : Aug. 25, 2025, 10:15 p.m. | 6 hours, 16 minutes ago
Description : A vulnerability was found in oitcode samarium up to 0.9.6. This impacts an unknown function of the file /dashboard/team of the component Team Image Handler. The manipulation results in cross site scripting. The attack may be launched remotely. The exploit has been made public and could be used.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 22:15:00 GMT

read more

CVE-2025-57805 - Scratch Channel Unauthenticated Article Publishing Vulnerability

CVE ID : CVE-2025-57805
Published : Aug. 25, 2025, 10:15 p.m. | 6 hours, 5 minutes ago
Description : The Scratch Channel is a news website. In versions 1 and 1.1, a POST request to the endpoint used to publish articles, can be used to post an article in any category with any date, regardless of who's logged in. This issue has been patched in version 1.2.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 22:15:00 GMT

read more

CVE-2025-57809 - XGrammar Infinite Recursion Vulnerability

CVE ID : CVE-2025-57809
Published : Aug. 25, 2025, 10:15 p.m. | 6 hours, 5 minutes ago
Description : XGrammar is an open-source library for efficient, flexible, and portable structured generation. Prior to version 0.1.21, XGrammar has an infinite recursion issue in the grammar. This issue has been resolved in version 0.1.21.
Severity: 7.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 22:15:00 GMT

read more

CVE-2025-57814 - Apache Request-Filtering-Agent SSRF Bypass

CVE ID : CVE-2025-57814
Published : Aug. 25, 2025, 10:15 p.m. | 6 hours, 5 minutes ago
Description : request-filtering-agent is an http(s).Agent implementation that blocks requests to Private/Reserved IP addresses. Versions 1.x.x and earlier contain a vulnerability where HTTPS requests to 127.0.0.1 bypass IP address filtering, while HTTP requests are correctly blocked. This allows attackers to potentially access internal HTTPS services running on localhost, bypassing the library's SSRF protection. The vulnerability is particularly dangerous when the application accepts user-controlled URLs and internal services are only protected by network-level restrictions. This vulnerability has been fixed in request-filtering-agent version 2.0.0. Users should upgrade to version 2.0.0 or later.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 22:15:00 GMT

read more

CVE-2025-8627 - TP-Link KP303 Unauthenticated Remote Command Injection

CVE ID : CVE-2025-8627
Published : Aug. 25, 2025, 10:15 p.m. | 6 hours, 5 minutes ago
Description : The TP-Link KP303 Smartplug can be issued unauthenticated protocol commands that may cause unintended power-off condition and potential information leak. This issue affects TP-Link KP303 (US) Smartplug: before 1.1.0.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 22:15:00 GMT

read more

CVE-2025-9419 - iSourcecode Apartment Management System SQL Injection

CVE ID : CVE-2025-9419
Published : Aug. 25, 2025, 9:15 p.m. | 7 hours, 5 minutes ago
Description : A vulnerability was detected in itsourcecode Apartment Management System 1.0. The affected element is an unknown function of the file /unit/addunit.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 21:15:00 GMT

read more

CVE-2025-57804 - Apache H2 HTTP/2 Request Smuggling Vulnerability

CVE ID : CVE-2025-57804
Published : Aug. 25, 2025, 9:15 p.m. | 5 hours, 4 minutes ago
Description : h2 is a pure-Python implementation of a HTTP/2 protocol stack. Prior to version 4.3.0, an HTTP/2 request splitting vulnerability allows attackers to perform request smuggling attacks by injecting CRLF characters into headers. This occurs when servers downgrade HTTP/2 requests to HTTP/1.1 without properly validating header names/values, enabling attackers to manipulate request boundaries and bypass security controls. This issue has been patched in version 4.3.0.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 21:15:00 GMT

read more

CVE-2025-6188 - Arista EOS UDP Port 3503 Remote Denial of Service and Authentication Bypass

CVE ID : CVE-2025-6188
Published : Aug. 25, 2025, 9:15 p.m. | 5 hours, 4 minutes ago
Description : On affected platforms running Arista EOS, maliciously formed UDP packets with source port 3503 may be accepted by EOS. UDP Port 3503 is associated with LspPing Echo Reply. This can result in unexpected behaviors, especially for UDP based services that do not perform some form of authentication.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 21:15:00 GMT

read more

CVE-2025-9418 - itsourcecode Apartment Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9418
Published : Aug. 25, 2025, 9:15 p.m. | 5 hours, 4 minutes ago
Description : A security vulnerability has been detected in itsourcecode Apartment Management System 1.0. Impacted is an unknown function of the file /owner/addowner.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 21:15:00 GMT

read more

CVE-2025-3456 - Arista EOS Clear Text Encryption Key Disclosure

CVE ID : CVE-2025-3456
Published : Aug. 25, 2025, 8:15 p.m. | 6 hours, 4 minutes ago
Description : On affected platforms running Arista EOS, the global common encryption key configuration may be logged in clear text, in local or remote accounting logs. Knowledge of both the encryption key and protocol specific encrypted secrets from the device running-config could then be used to obtain protocol specific passwords in cases where symmetric passwords are required between devices with neighbor protocol relationships.
Severity: 3.8 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 20:15:00 GMT

read more

CVE-2025-52130 - WebErpMesv2 File Upload RCE

CVE ID : CVE-2025-52130
Published : Aug. 25, 2025, 8:15 p.m. | 6 hours, 4 minutes ago
Description : File upload vulnerability in WebErpMesv2 1.17 in the app/Http/Controllers/FactoryController.php controller. This flaw allows an authenticated attacker to upload arbitrary files, including PHP scripts, which can be accessed via direct GET requests, potentially resulting in remote code execution (RCE) on the web server.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 20:15:00 GMT

read more

CVE-2025-9416 - "Oitcode Samarium Pages Image Handler Cross-Site Scripting Vulnerability"

CVE ID : CVE-2025-9416
Published : Aug. 25, 2025, 8:15 p.m. | 6 hours, 4 minutes ago
Description : A security flaw has been discovered in oitcode samarium up to 0.9.6. This vulnerability affects unknown code of the file /cms/webpage/ of the component Pages Image Handler. The manipulation results in cross site scripting. The attack may be performed from a remote location. The exploit has been released to the public and may be exploited.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 20:15:00 GMT

read more

CVE-2025-9417 - iSourcecode Apartment Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9417
Published : Aug. 25, 2025, 8:15 p.m. | 6 hours, 4 minutes ago
Description : A weakness has been identified in itsourcecode Apartment Management System 1.0. This issue affects some unknown processing of the file /employee/addemployee.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 20:15:00 GMT

read more

CVE-2025-9414 - Kodbox Server-Download SSRF Vulnerability

CVE ID : CVE-2025-9414
Published : Aug. 25, 2025, 7:15 p.m. | 7 hours, 4 minutes ago
Description : A vulnerability was found in kalcaddle kodbox 1.61. Affected by this vulnerability is an unknown functionality of the file /?explorer/upload/serverDownload of the component Download from Link Handler. Performing manipulation of the argument url results in server-side request forgery. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 19:15:00 GMT

read more

CVE-2025-9415 - GreenCMS Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9415
Published : Aug. 25, 2025, 7:15 p.m. | 7 hours, 4 minutes ago
Description : A vulnerability was identified in GreenCMS up to 2.3.0603. This affects an unknown part of the file /index.php?m=admin&c=media&a=fileconnect. The manipulation of the argument upload[] leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. This vulnerability only affects products that are no longer supported by the maintainer.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 19:15:00 GMT

read more

CVE-2025-57802 - Airlink Docker Bind Mount Symlink Privilege Escalation Vulnerability

CVE ID : CVE-2025-57802
Published : Aug. 25, 2025, 6:15 p.m. | 6 hours, 2 minutes ago
Description : Airlink's Daemon interfaces with Docker and the Panel to provide secure access for controlling instances via the Panel. In version 1.0.0, an attacker with access to the affected container can create symbolic links inside the mounted directory (/app/data). Because the container bind-mounts an arbitrary host path, these symlinks can point to sensitive locations on the host filesystem. When the application or other processes follow these symlinks, the attacker can gain unauthorized read access to host files outside the container. This issue has been patched in version 1.0.1.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 18:15:00 GMT

read more

CVE-2025-57811 - Craft Server-Side Template Injection Remote Code Execution Vulnerability

CVE ID : CVE-2025-57811
Published : Aug. 25, 2025, 6:15 p.m. | 6 hours, 2 minutes ago
Description : Craft is a platform for creating digital experiences. From versions 4.0.0-RC1 to 4.16.5 and 5.0.0-RC1 to 5.8.6, there is a potential remote code execution vulnerability via Twig SSTI (Server-Side Template Injection). This is a follow-up to CVE-2024-52293. This vulnerability has been patched in versions 4.16.6 and 5.8.7.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 18:15:00 GMT

read more

CVE-2025-9412 - LostVip.com Ruoyi-Go Remote SQL Injection

CVE ID : CVE-2025-9412
Published : Aug. 25, 2025, 6:15 p.m. | 6 hours, 2 minutes ago
Description : A vulnerability was detected in lostvip-com ruoyi-go up to 2.1. This affects the function SelectListByPage of the file modules/system/dao/DictDataDao.go. The manipulation of the argument orderByColumn/isAsc results in sql injection. The attack can be launched remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 18:15:00 GMT

read more

CVE-2025-9413 - LostVIP Ruoyi-Go SQL Injection Vulnerability

CVE ID : CVE-2025-9413
Published : Aug. 25, 2025, 6:15 p.m. | 6 hours, 2 minutes ago
Description : A flaw has been found in lostvip-com ruoyi-go up to 2.1. This impacts the function SelectListByPage of the file modules/system/system_router.go. This manipulation of the argument orderByColumn/isAsc causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 18:15:00 GMT

read more

CVE-2025-50383 - Easy!Appointments SQL Injection

CVE ID : CVE-2025-50383
Published : Aug. 25, 2025, 6:15 p.m. | 4 hours, 6 minutes ago
Description : alextselegidis Easy!Appointments v1.5.1 was discovered to contain a SQL injection vulnerability via the order_by parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 18:15:00 GMT

read more

CVE-2025-29420 - PerfreeBlog Directory Traversal Vulnerability

CVE ID : CVE-2025-29420
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : PerfreeBlog v4.0.11 has a directory traversal vulnerability in the getThemeFilesByName function.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-29421 - PerfreeBlog Arbitrary File Read Vulnerability

CVE ID : CVE-2025-29421
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : PerfreeBlog v4.0.11 has an arbitrary file read vulnerability in the getThemeFileContent function.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-50722 - Apache Sparkshop Unauthenticated Remote Code Execution

CVE ID : CVE-2025-50722
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : Insecure Permissions vulnerability in sparkshop v.1.1.7 allows a remote attacker to execute arbitrary code via the Common.php component
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-53120 - "Juniper Unified PAM Remote Code Execution via Path Traversal"

CVE ID : CVE-2025-53120
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : A path traversal vulnerability in unauthenticated upload functionality allows a malicious actor to upload binaries and scripts to the server’s configuration and web root directories, achieving remote code execution on the Unified PAM server.
Severity: 9.4 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-57760 - Langflow Privilege Escalation Vulnerability

CVE ID : CVE-2025-57760
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : Langflow is a tool for building and deploying AI-powered agents and workflows. A privilege escalation vulnerability exists in Langflow containers where an authenticated user with RCE access can invoke the internal CLI command langflow superuser to create a new administrative user. This results in full superuser access, even if the user initially registered through the UI as a regular (non-admin) account. A patched version has not been made public at this time.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-57772 - DataEase H2 JDBC RCE Bypass

CVE ID : CVE-2025-57772
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.12, there is a H2 JDBC RCE bypass in DataEase. If the JDBC URL meets criteria, the getJdbcUrl method is returned, which acts as the getter for the JdbcUrl parameter provided. This bypasses H2's filtering logic and returns the H2 JDBC URL, allowing the "driver":"org.h2.Driver" to specify the H2 driver for the JDBC connection. The vulnerability has been fixed in version 2.10.12.
Severity: 8.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-57773 - DataEase JNDI Injection Vulnerability

CVE ID : CVE-2025-57773
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : DataEase is an open source business intelligence and data visualization tool. Prior to version 2.10.12, because DB2 parameters are not filtered, a JNDI injection attack can be directly launched. JNDI triggers an AspectJWeaver deserialization attack, writing to various files. This vulnerability requires commons-collections 4.x and aspectjweaver-1.9.22.jar. The vulnerability has been fixed in version 2.10.12.
Severity: 8.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-6737 - Securden Unified PAM Remote Vendor Gateway Authentication Bypass

CVE ID : CVE-2025-6737
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : Securden’s Unified PAM Remote Vendor Gateway access portal shares infrastructure and access tokens across multiple tenants. A malicious actor can obtain authentication material and access the gateway server with low-privilege permissions.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-9410 - LostVIP Ruoyi-go SQL Injection Vulnerability

CVE ID : CVE-2025-9410
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : A weakness has been identified in lostvip-com ruoyi-go up to 2.1. The affected element is the function SelectListByPage of the file modules/system/dao/GenTableDao.go. Executing manipulation of the argument isAsc/orderByColumn can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-9411 - "LostVIP.com Ruoyi-go SQL Injection Vulnerability"

CVE ID : CVE-2025-9411
Published : Aug. 25, 2025, 5:15 p.m. | 5 hours, 6 minutes ago
Description : A security vulnerability has been detected in lostvip-com ruoyi-go up to 2.1. The impacted element is the function SelectPageList of the file modules/system/service/LoginInforService.go. The manipulation of the argument isAsc leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 17:15:00 GMT

read more

CVE-2025-46411 - The Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-46411
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-48005 - Biosig Project libbiosig Heap-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-48005
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A heap-based buffer overflow vulnerability exists in the RHS2000 parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted RHS2000 file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-52461 - Biosig Project Libbiosig Nex Parsing Out-of-Bounds Read Information Leak

CVE ID : CVE-2025-52461
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : An out-of-bounds read vulnerability exists in the Nex parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted .nex file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 8.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-52581 - The Biosig Project libbiosig Arbitrary Code Execution Vulnerability

CVE ID : CVE-2025-52581
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : An integer overflow vulnerability exists in the GDF parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted GDF file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-53511 - The Biosig Project libbiosig Heap-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-53511
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A heap-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-53518 - The Biosig Project libbiosig Arbitrary Code Execution Vulnerability

CVE ID : CVE-2025-53518
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : An integer overflow vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted ABF file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-53557 - Biosig Project Libbiosig MFER Parsing Heap-Based Buffer Overflow

CVE ID : CVE-2025-53557
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A heap-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-53853 - Biosig Project libbiosig Heap-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-53853
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A heap-based buffer overflow vulnerability exists in the ISHNE parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted ISHNE ECG annotations file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54370 - PhpOffice/PhpSpreadsheet SSRF Vulnerability

CVE ID : CVE-2025-54370
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : PhpOffice/PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Prior to versions 1.30.0, 2.1.12, 2.4.0, 3.10.0, and 5.0.0, SSRF can occur when a processed HTML document is read and displayed in the browser. The vulnerability lies in the setPath method of the PhpOffice\PhpSpreadsheet\Worksheet\Drawing class, where a crafted string from the user is passed to the HTML reader. This issue has been patched in versions 1.30.0, 2.1.12, 2.4.0, 3.10.0, and 5.0.0.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54462 - Biosig Project libbiosig Heap-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54462
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A heap-based buffer overflow vulnerability exists in the Nex parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted .nex file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54480 - The Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54480
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8719 of biosig.c on the current master branch (35a819fa), when the Tag is 0: if (tag==0) { if (len!=1) fprintf(stderr,"Warning MFER tag0 incorrect length %i!=1\n",len); curPos += ifread(buf,1,len,hdr); }
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54481 - Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54481
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8744 of biosig.c on the current master branch (35a819fa), when the Tag is 3: else if (tag==3) { // character code char v[17]; // [1] if (len>16) fprintf(stderr,"Warning MFER tag2 incorrect length %i>16\n",len); curPos += ifread(&v,1,len,hdr); v[len] = 0; In this case, the overflowed buffer is the newly-declared `v` \[1\] instead of `buf`. Since `v` is only 17 bytes large, much smaller values of `len` (even those encoded using a single octet) can trigger an overflow in this code path.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54482 - The Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54482
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8751 of biosig.c on the current master branch (35a819fa), when the Tag is 4: else if (tag==4) { // SPR if (len>4) fprintf(stderr,"Warning MFER tag4 incorrect length %i>4\n",len); curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54483 - The Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54483
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8759 of biosig.c on the current master branch (35a819fa), when the Tag is 5: else if (tag==5) //0x05: number of channels { uint16_t oldNS=hdr->NS; if (len>4) fprintf(stderr,"Warning MFER tag5 incorrect length %i>4\n",len); curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54484 - Biosig Project libbiosig MFER Parsing Stack Buffer Overflow

CVE ID : CVE-2025-54484
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8779 of biosig.c on the current master branch (35a819fa), when the Tag is 6: else if (tag==6) // 0x06 "number of sequences" { // NRec if (len>4) fprintf(stderr,"Warning MFER tag6 incorrect length %i>4\n",len); curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54485 - Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54485
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8785 of biosig.c on the current master branch (35a819fa), when the Tag is 8: else if (tag==8) { if (len>2) fprintf(stderr,"Warning MFER tag8 incorrect length %i>2\n",len); curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54486 - The Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54486
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8824 of biosig.c on the current master branch (35a819fa), when the Tag is 11: else if (tag==11) //0x0B { // Fs if (len>6) fprintf(stderr,"Warning MFER tag11 incorrect length %i>6\n",len); double fval; curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54487 - The Biosig Project libbiosig MFER Parsing Stack Buffer Overflow

CVE ID : CVE-2025-54487
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8842 of biosig.c on the current master branch (35a819fa), when the Tag is 12: else if (tag==12) //0x0C { // sampling resolution if (len>6) fprintf(stderr,"Warning MFER tag12 incorrect length %i>6\n",len); val32 = 0; int8_t v8; curPos += ifread(&UnitCode,1,1,hdr); curPos += ifread(&v8,1,1,hdr); curPos += ifread(buf,1,len-2,hdr); In addition to values of `len` greater than 130 triggering a buffer overflow, a value of `len` smaller than 2 will also trigger a buffer overflow due to an integer underflow when computing `len-2` in this code path.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54488 - "The Biosig Project libbiosig Stack-Based Buffer Overflow"

CVE ID : CVE-2025-54488
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8850 of biosig.c on the current master branch (35a819fa), when the Tag is 13: else if (tag==13) { if (len>8) fprintf(stderr,"Warning MFER tag13 incorrect length %i>8\n",len); curPos += ifread(&buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54489 - The Biosig Project libbiosig MFER Parsing Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54489
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 8970 of biosig.c on the current master branch (35a819fa), when the Tag is 63: else if (tag==63) { uint8_t tag2=255, len2=255; count = 0; while ((count Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54490 - The Biosig Project libbiosig Stack-Based Buffer Overflow

CVE ID : CVE-2025-54490
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9090 of biosig.c on the current master branch (35a819fa), when the Tag is 64: else if (tag==64) //0x40 { // preamble char tmp[256]; // [1] curPos += ifread(tmp,1,len,hdr); In this case, the overflowed buffer is the newly-declared `tmp` \[1\] instead of `buf`. While `tmp` is larger than `buf`, having a size of 256 bytes, a stack overflow can still occur in cases where `len` is encoded using multiple octets and is greater than 256.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54491 - The Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54491
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9191 of biosig.c on the current master branch (35a819fa), when the Tag is 65: else if (tag==65) //0x41: patient event { // event table curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54492 - Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54492
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9141 of biosig.c on the current master branch (35a819fa), when the Tag is 67: else if (tag==67) //0x43: Sample skew { int skew=0; // [1] curPos += ifread(&skew, 1, len,hdr); In this case, the address of the newly-defined integer `skew` \[1\] is overflowed instead of `buf`. This means a stack overflow can occur using much smaller values of `len` in this code path.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54493 - Biosig Project libbiosig Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54493
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9184 of biosig.c on the current master branch (35a819fa), when the Tag is 131: else if (tag==131) //0x83 { // Patient Age if (len!=7) fprintf(stderr,"Warning MFER tag131 incorrect length %i!=7\n",len); curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-54494 - Biosig Project libbiosig MFER Parsing Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-54494
Published : Aug. 25, 2025, 2:15 p.m. | 7 hours, 30 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This vulnerability manifests on line 9205 of biosig.c on the current master branch (35a819fa), when the Tag is 133: else if (tag==133) //0x85 { curPos += ifread(buf,1,len,hdr);
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 14:15:00 GMT

read more

CVE-2025-9407 - Mtons MBlog Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9407
Published : Aug. 25, 2025, 11:15 a.m. | 3 hours, 6 minutes ago
Description : A flaw has been found in mtons mblog up to 3.5.0. Affected by this vulnerability is an unknown functionality of the file /settings/profile. Executing manipulation of the argument signature can lead to cross site scripting. The attack may be launched remotely. The exploit has been published and may be used. Other parameters might be affected as well.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 11:15:00 GMT

read more

CVE-2025-48303 - Kevin Langley Jr. Post Type Converter CSRF Vulnerability

CVE ID : CVE-2025-48303
Published : Aug. 25, 2025, 10:15 a.m. | 4 hours, 6 minutes ago
Description : Cross-Site Request Forgery (CSRF) vulnerability in Kevin Langley Jr. Post Type Converter allows Cross-Site Request Forgery.This issue affects Post Type Converter: from n/a through 0.6.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 10:15:00 GMT

read more

CVE-2025-8562 - WordPress Custom Query Shortcode Path Traversal

CVE ID : CVE-2025-8562
Published : Aug. 25, 2025, 10:15 a.m. | 4 hours, 6 minutes ago
Description : The Custom Query Shortcode plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 0.4.0 via the 'lens' parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to read the contents of files on the server, which can contain sensitive information.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 10:15:00 GMT

read more

CVE-2025-7426 - Mnova TTA FTP Debug Port Authentication Bypass Information Disclosure

CVE ID : CVE-2025-7426
Published : Aug. 25, 2025, 9:15 a.m. | 5 hours, 6 minutes ago
Description : Information disclosure and exposure of authentication FTP credentials over the debug port 1604 in the MINOVA TTA service. This allows unauthenticated remote access to an active FTP account containing sensitive internal data and import structures. In environments where this FTP server is part of automated business processes (e.g. EDI or data integration), this could lead to data manipulation, extraction, or abuse.  Debug ports 1602, 1603 and 1636 also expose service architecture information and system activity logs
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 09:15:00 GMT

read more

CVE-2025-5191 - Moxa SerialInterfaceService Unquoted Search Path Privilege Escalation

CVE ID : CVE-2025-5191
Published : Aug. 25, 2025, 8:15 a.m. | 6 hours, 6 minutes ago
Description : An Unquoted Search Path vulnerability has been identified in the utility for Moxa’s industrial computers (Windows). Due to the unquoted path configuration in the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority directory within the search path. When the Serial Interface service starts, the malicious executable could be run with SYSTEM privileges. Successful exploitation could allow privilege escalation or enable an attacker to maintain persistence on the affected system. While successful exploitation can severely impact the confidentiality, integrity, and availability of the affected device itself, there is no loss of confidentiality, integrity, or availability within any subsequent systems.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 08:15:00 GMT

read more

CVE-2025-54300 - "Joomla Quantum Manager SVG Upload Stored XSS"

CVE ID : CVE-2025-54300
Published : Aug. 25, 2025, 7:15 a.m. | 7 hours, 6 minutes ago
Description : A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. The SVG upload feature does not sanitize uploads.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 07:15:00 GMT

read more

CVE-2025-54301 - "Quantum Manager Joomla Stored XSS"

CVE ID : CVE-2025-54301
Published : Aug. 25, 2025, 7:15 a.m. | 7 hours, 6 minutes ago
Description : A stored XSS vulnerability in Quantum Manager component 1.0.0-3.2.0 for Joomla was discovered. File names are not properly escaped.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 07:15:00 GMT

read more

CVE-2025-8997 - OpenText Enterprise Security Manager Information Exposure Vulnerability

CVE ID : CVE-2025-8997
Published : Aug. 25, 2025, 7:15 a.m. | 7 hours, 6 minutes ago
Description : An Information Exposure vulnerability has been identified in OpenText Enterprise Security Manager. The vulnerability could be remotely exploited.
Severity: 5.7 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 07:15:00 GMT

read more

CVE-2025-9118 - Google Cloud Dataform Path Traversal Vulnerability

CVE ID : CVE-2025-9118
Published : Aug. 25, 2025, 7:15 a.m. | 7 hours, 6 minutes ago
Description : A path traversal vulnerability in the NPM package installation process of Google Cloud Dataform allows a remote attacker to read and write files in other customers' repositories via a maliciously crafted package.json file.
Severity: 10.0 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 07:15:00 GMT

read more

CVE-2025-5514 - Mitsubishi Electric Corporation MELSEC iQ-F Series CPU Module HTTP Request Delay Denial of Service Vulnerability

CVE ID : CVE-2025-5514
Published : Aug. 25, 2025, 6:15 a.m. | 8 hours, 6 minutes ago
Description : Improper Handling of Length Parameter Inconsistency vulnerability in web server function on Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote unauthenticated attacker to delay the processing of the web server function and prevent legitimate users from utilizing the web server function, by sending a specially crafted HTTP request.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 06:15:00 GMT

read more

CVE-2025-9405 - Open5GS Remote Assertion Vulnerability

CVE ID : CVE-2025-9405
Published : Aug. 25, 2025, 4:15 a.m. | 10 hours, 6 minutes ago
Description : A security flaw has been discovered in Open5GS up to 2.7.5. The impacted element is the function gmm_state_exception of the file src/amf/gmm-sm.c. The manipulation results in reachable assertion. It is possible to launch the attack remotely. The exploit has been released to the public and may be exploited. The patch is identified as 8e5fed16114f2f5e40bee1b161914b592b2b7b8f. Applying a patch is advised to resolve this issue.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 04:15:00 GMT

read more

CVE-2025-9406 - Apache Mossle CMS Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9406
Published : Aug. 25, 2025, 4:15 a.m. | 10 hours, 5 minutes ago
Description : A weakness has been identified in xuhuisheng lemon up to 1.13.0. This affects the function uploadImage of the file CmsArticleController.java of the component com.mossle.cms.web.CmsArticleController.uploadImage. This manipulation of the argument Upload causes unrestricted upload. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 04:15:00 GMT

read more

CVE-2025-9403 - "jqlang jq JSON Parser Local Assertion Vulnerability"

CVE ID : CVE-2025-9403
Published : Aug. 25, 2025, 3:15 a.m. | 11 hours, 6 minutes ago
Description : A vulnerability was determined in jqlang jq up to 1.6. Impacted is the function run_jq_tests of the file jq_test.c of the component JSON Parser. Executing manipulation can lead to reachable assertion. The attack requires local access. The exploit has been publicly disclosed and may be utilized. Other versions might be affected as well.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 03:15:00 GMT

read more

CVE-2025-9404 - Scada-LTS Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9404
Published : Aug. 25, 2025, 3:15 a.m. | 11 hours, 6 minutes ago
Description : A vulnerability was identified in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file /pointHierarchySLTS of the component Folder Handler. The manipulation of the argument Title leads to cross site scripting. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 03:15:00 GMT

read more

CVE-2025-9402 - HuangDou UTCMS Server-Side Request Forgery (SSRF) in Config Handler

CVE ID : CVE-2025-9402
Published : Aug. 25, 2025, 2:15 a.m. | 12 hours, 6 minutes ago
Description : A vulnerability was found in HuangDou UTCMS 9. This issue affects some unknown processing of the file app/modules/ut-frame/admin/update.php of the component Config Handler. Performing manipulation of the argument UPDATEURL results in server-side request forgery. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 02:15:00 GMT

read more

CVE-2025-9399 - YiFang CMS SQL Injection Vulnerability

CVE ID : CVE-2025-9399
Published : Aug. 25, 2025, 1:15 a.m. | 13 hours, 6 minutes ago
Description : A vulnerability was detected in YiFang CMS up to 2.0.5. Affected by this issue is some unknown functionality of the file app/logic/L_tool.php. The manipulation of the argument new_url results in sql injection. The attack may be launched remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 01:15:00 GMT

read more

CVE-2025-9400 - YiFang CMS Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9400
Published : Aug. 25, 2025, 1:15 a.m. | 13 hours, 6 minutes ago
Description : A flaw has been found in YiFang CMS up to 2.0.5. This affects the function mergeMultipartUpload of the file app/utils/base/plugin/P_file.php. This manipulation of the argument File causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 01:15:00 GMT

read more

CVE-2025-9401 - HuangDou UTCMS Remote Code Execution Vulnerability

CVE ID : CVE-2025-9401
Published : Aug. 25, 2025, 1:15 a.m. | 13 hours, 6 minutes ago
Description : A vulnerability has been found in HuangDou UTCMS 9. This vulnerability affects unknown code of the file app/modules/ut-frame/admin/login.php of the component Login. Such manipulation of the argument code leads to incorrect comparison. The attack can be executed remotely. The attack requires a high level of complexity. It is stated that the exploitability is difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 01:15:00 GMT

read more

CVE-2025-9398 - YiFang CMS Migrate.php Information Disclosure

CVE ID : CVE-2025-9398
Published : Aug. 25, 2025, 12:15 a.m. | 14 hours, 6 minutes ago
Description : A security vulnerability has been detected in YiFang CMS up to 2.0.5. Affected by this vulnerability is the function exportInstallTable of the file app/utils/base/database/Migrate.php. The manipulation leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Mon, 25 Aug 2025 00:15:00 GMT

read more

CVE-2025-9396 - lrzip Null Pointer Dereference Vulnerability

CVE ID : CVE-2025-9396
Published : Aug. 24, 2025, 11:15 p.m. | 15 hours, 6 minutes ago
Description : A security flaw has been discovered in ckolivas lrzip up to 0.651. This impacts the function __GI_____strtol_l_internal of the file strtol_l.c. Performing manipulation results in null pointer dereference. The attack is only possible with local access. The exploit has been released to the public and may be exploited.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 23:15:00 GMT

read more

CVE-2025-9397 - Givanz Vvveb Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9397
Published : Aug. 24, 2025, 11:15 p.m. | 15 hours, 6 minutes ago
Description : A weakness has been identified in givanz Vvveb up to 1.0.7.2. Affected is an unknown function of the file /system/traits/media.php. Executing manipulation of the argument files[] can lead to unrestricted upload. The attack can be launched remotely. The exploit has been made available to the public and could be exploited. Applying a patch is advised to resolve this issue. The code maintainer explains, that "[he] fixed the code to remove this vulnerability and will make a new release".
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 23:15:00 GMT

read more

CVE-2025-9395 - Wangsongyan Wblog SRFO (Server-Side Request Forgery)

CVE ID : CVE-2025-9395
Published : Aug. 24, 2025, 10:15 p.m. | 16 hours, 6 minutes ago
Description : A vulnerability was identified in wangsongyan wblog 0.0.1. This affects the function RestorePost of the file backup.go. Such manipulation of the argument fileName leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 22:15:00 GMT

read more

CVE-2025-9393 - "Linksys RE Series Stack-Based Buffer Overflow Vulnerability"

CVE ID : CVE-2025-9393
Published : Aug. 24, 2025, 4:15 p.m. | 22 hours, 6 minutes ago
Description : A vulnerability was detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaProfile of the file /goform/addStaProfile. Performing manipulation of the argument profile_name/Ssid/wep_key_1/wep_key_2/wep_key_3/wep_key_4/wep_key_length/wep_default_key/cipher/passphrase results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 16:15:00 GMT

read more

CVE-2025-9394 - PoDoFo PDF Dictionary Parser Use After Free Vulnerability

CVE ID : CVE-2025-9394
Published : Aug. 24, 2025, 4:15 p.m. | 22 hours, 6 minutes ago
Description : A flaw has been found in PoDoFo 1.1.0-dev. This issue affects the function PdfTokenizer::DetermineDataType of the file src/podofo/main/PdfTokenizer.cpp of the component PDF Dictionary Parser. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host. The exploit has been published and may be used. This patch is called 22d16cb142f293bf956f66a4d399cdd65576d36c. A patch should be applied to remediate this issue.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 16:15:00 GMT

read more

CVE-2025-9392 - Linksys Wireless Router Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9392
Published : Aug. 24, 2025, 3:15 p.m. | 23 hours, 6 minutes ago
Description : A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function qosClassifier of the file /goform/qosClassifier. Such manipulation of the argument dir/sFromPort/sToPort/dFromPort/dToPort/protocol/layer7/dscp/remark_dscp leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 15:15:00 GMT

read more

CVE-2025-9391 - Bjskzy Zhiyou ERP SQL Injection

CVE ID : CVE-2025-9391
Published : Aug. 24, 2025, 3:15 p.m. | 20 hours, 31 minutes ago
Description : A weakness has been identified in Bjskzy Zhiyou ERP up to 11.0. Affected by this issue is the function getFieldValue of the component com.artery.workflow.ServiceImpl. This manipulation of the argument sql causes sql injection. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 15:15:00 GMT

read more

CVE-2025-9390 - Vim xxd Buffer Overflow Vulnerability

CVE ID : CVE-2025-9390
Published : Aug. 24, 2025, 2:15 p.m. | 21 hours, 8 minutes ago
Description : A security flaw has been discovered in vim up to 9.1.1615. Affected by this vulnerability is the function main of the file src/xxd/xxd.c of the component xxd. The manipulation results in buffer overflow. The attack requires a local approach. The exploit has been released to the public and may be exploited. Upgrading to version 9.1.1616 addresses this issue. The patch is identified as eeef7c77436a78cd27047b0f5fa6925d56de3cb0. It is recommended to upgrade the affected component.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 14:15:00 GMT

read more

CVE-2025-9388 - Scada-LTS Cross-Site Scripting

CVE ID : CVE-2025-9388
Published : Aug. 24, 2025, 1:15 p.m. | 20 hours, 12 minutes ago
Description : A vulnerability was determined in Scada-LTS up to 2.7.8.1. This impacts an unknown function of the file watch_list.shtm. Executing manipulation of the argument Name can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 13:15:00 GMT

read more

CVE-2025-9389 - Vim Local Memory Corruption Vulnerability

CVE ID : CVE-2025-9389
Published : Aug. 24, 2025, 1:15 p.m. | 20 hours, 12 minutes ago
Description : A vulnerability was identified in vim 9.1.0000. Affected is the function __memmove_avx_unaligned_erms of the file memmove-vec-unaligned-erms.S. The manipulation leads to memory corruption. The attack needs to be performed locally. The exploit is publicly available and might be used. Some users are not able to reproduce this. One of the users mentions that this appears not to be working, "when coloring is turned on".
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 13:15:00 GMT

read more

CVE-2025-9387 - DCN DCME-720 Web Management Backend OS Command Injection

CVE ID : CVE-2025-9387
Published : Aug. 24, 2025, 12:15 p.m. | 19 hours, 11 minutes ago
Description : A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ip_block.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used. Other products might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 12:15:00 GMT

read more

CVE-2025-9385 - Appneta TCPreplay Use After Free Vulnerability

CVE ID : CVE-2025-9385
Published : Aug. 24, 2025, 11:15 a.m. | 20 hours, 11 minutes ago
Description : A flaw has been found in appneta tcpreplay up to 4.5.1. The affected element is the function fix_ipv6_checksums of the file edit_packet.c of the component tcprewrite. This manipulation causes use after free. The attack is restricted to local execution. The exploit has been published and may be used. Upgrading to version 4.5.2-beta3 is sufficient to fix this issue. It is advisable to upgrade the affected component.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 11:15:00 GMT

read more

CVE-2025-9386 - AppNeta Tcpreplay Use After Free Vulnerability

CVE ID : CVE-2025-9386
Published : Aug. 24, 2025, 11:15 a.m. | 20 hours, 11 minutes ago
Description : A vulnerability has been found in appneta tcpreplay up to 4.5.1. The impacted element is the function get_l2len_protocol of the file get.c of the component tcprewrite. Such manipulation leads to use after free. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. Upgrading to version 4.5.2-beta3 is sufficient to resolve this issue. You should upgrade the affected component.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 11:15:00 GMT

read more

CVE-2025-9383 - FNKvision Y215 CCTV Camera Weak Hash Local Privilege Escalation Vulnerability

CVE ID : CVE-2025-9383
Published : Aug. 24, 2025, 10:15 a.m. | 21 hours, 11 minutes ago
Description : A security vulnerability has been detected in FNKvision Y215 CCTV Camera 10.194.120.40. This issue affects the function crypt of the file /etc/passwd. The manipulation leads to use of weak hash. The attack can only be performed from a local environment. The complexity of an attack is rather high. The exploitability is assessed as difficult. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 2.5 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 10:15:00 GMT

read more

CVE-2025-9384 - Appneta TCPreplay Local Null Pointer Dereference Vulnerability

CVE ID : CVE-2025-9384
Published : Aug. 24, 2025, 10:15 a.m. | 21 hours, 11 minutes ago
Description : A vulnerability was detected in appneta tcpreplay up to 4.5.1. Impacted is the function tcpedit_post_args of the file /src/tcpedit/parse_args.c. The manipulation results in null pointer dereference. The attack is only possible with local access. The exploit is now public and may be used. Upgrading to version 4.5.2-beta2 is recommended to address this issue. Upgrading the affected component is advised. The vendor explains, that he was "[a]ble to reproduce in 6fcbf03 but not in 4.5.2-beta2".
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 10:15:00 GMT

read more

CVE-2025-9382 - FNKvision Y215 CCTV Camera Telnet Service Backdoor Vulnerability

CVE ID : CVE-2025-9382
Published : Aug. 24, 2025, 8:15 a.m. | 21 hours, 8 minutes ago
Description : A weakness has been identified in FNKvision Y215 CCTV Camera 10.194.120.40. This vulnerability affects unknown code of the file s1_rf_test_config of the component Telnet Sevice. Executing manipulation can lead to backdoor. The physical device can be targeted for the attack. This attack is characterized by high complexity. It is stated that the exploitability is difficult. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 08:15:00 GMT

read more

CVE-2025-9381 - FNKvision Y215 CCTV Camera File Disclosure Vulnerability

CVE ID : CVE-2025-9381
Published : Aug. 24, 2025, 8:15 a.m. | 19 hours, 11 minutes ago
Description : A security flaw has been discovered in FNKvision Y215 CCTV Camera 10.194.120.40. This affects an unknown part of the file /tmp/wpa_supplicant.conf. Performing manipulation results in information disclosure. The attack may be carried out on the physical device. The attack's complexity is rated as high. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 1.6 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 08:15:00 GMT

read more

CVE-2025-9379 - "Belkin AX1800 Firmware Update Handler Remote Authentication Bypass"

CVE ID : CVE-2025-9379
Published : Aug. 24, 2025, 7:15 a.m. | 20 hours, 10 minutes ago
Description : A vulnerability was determined in Belkin AX1800 1.1.00.016. Affected by this vulnerability is an unknown functionality of the component Firmware Update Handler. This manipulation causes insufficient verification of data authenticity. The attack can be initiated remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 07:15:00 GMT

read more

CVE-2025-9380 - FNKvision Y215 CCTV Camera Firmware Hard-coded Credentials Vulnerability

CVE ID : CVE-2025-9380
Published : Aug. 24, 2025, 7:15 a.m. | 20 hours, 10 minutes ago
Description : A vulnerability was identified in FNKvision Y215 CCTV Camera 10.194.120.40. Affected by this issue is some unknown functionality of the file /etc/passwd of the component Firmware. Such manipulation leads to hard-coded credentials. Local access is required to approach this attack. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 07:15:00 GMT

read more

CVE-2025-8208 - Spexo Addons for Elementor WordPress Stored Cross-Site Scripting

CVE ID : CVE-2025-8208
Published : Aug. 24, 2025, 6:15 a.m. | 21 hours, 10 minutes ago
Description : The Spexo Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown widget in all versions up to, and including, 1.0.23 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 06:15:00 GMT

read more

CVE-2025-36157 - IBM Jazz Foundation Unauthorized File Update Vulnerability

CVE ID : CVE-2025-36157
Published : Aug. 24, 2025, 2:15 a.m. | 22 hours, 42 minutes ago
Description : IBM Jazz Foundation 7.0.2 to 7.0.2 iFix035, 7.0.3 to 7.0.3 iFix018, and 7.1.0 to 7.1.0 iFix004 could allow an unauthenticated remote attacker to update server property files that would allow them to perform unauthorized actions.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 02:15:00 GMT

read more

CVE-2025-36174 - IBM Integrated Analytics System File Upload Arbitrary Code Execution Vulnerability

CVE ID : CVE-2025-36174
Published : Aug. 24, 2025, 2:15 a.m. | 22 hours, 42 minutes ago
Description : IBM Integrated Analytics System 1.0.0.0 through 1.0.30.0 could allow an authenticated user to upload a file with dangerous types that could be executed by another user if opened.
Severity: 8.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sun, 24 Aug 2025 02:15:00 GMT

read more

CVE-2025-9362 - Linksys Router Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9362
Published : Aug. 23, 2025, 2:15 p.m. | 1 day, 10 hours ago
Description : A flaw has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. The impacted element is the function urlFilterManageRule of the file /goform/urlFilterManageRule. Executing manipulation of the argument urlFilterRuleName/scheduleUrl/addURLFilter can lead to stack-based buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 14:15:00 GMT

read more

CVE-2025-9363 - Linksys Wi-Fi Router Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9363
Published : Aug. 23, 2025, 2:15 p.m. | 1 day, 10 hours ago
Description : A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function portTriggerManageRule of the file /goform/portTriggerManageRule. The manipulation of the argument triggerRuleName/schedule leads to stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 14:15:00 GMT

read more

CVE-2025-9361 - Linksys RE Series Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9361
Published : Aug. 23, 2025, 12:15 p.m. | 1 day, 11 hours ago
Description : A vulnerability was detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. The affected element is the function ipRangeBlockManageRule of the file /goform/ipRangeBlockManageRule. Performing manipulation of the argument ipRangeBlockRuleName/scheduleIp/ipRangeBlockRuleIpAddr results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 12:15:00 GMT

read more

CVE-2025-9360 - Linksys RE Series Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9360
Published : Aug. 23, 2025, 11:15 a.m. | 1 day, 12 hours ago
Description : A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Impacted is the function accessControlAdd of the file /goform/accessControlAdd. Such manipulation of the argument ruleName/schedule leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 11:15:00 GMT

read more

CVE-2025-9359 - Linksys Wireless Router Stack-Based Buffer Overflow

CVE ID : CVE-2025-9359
Published : Aug. 23, 2025, 10:15 a.m. | 1 day, 13 hours ago
Description : A weakness has been identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This issue affects the function RP_checkCredentialsByBBS of the file /goform/RP_checkCredentialsByBBS. This manipulation of the argument ssidhex/pwd causes stack-based buffer overflow. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 10:15:00 GMT

read more

CVE-2025-9358 - Linksys RE Series Stack-Based Buffer Overflow

CVE ID : CVE-2025-9358
Published : Aug. 23, 2025, 8:15 a.m. | 1 day, 13 hours ago
Description : A security flaw has been discovered in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function setSysAdm of the file /goform/setSysAdm. The manipulation of the argument admpasshint results in stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 08:15:00 GMT

read more

CVE-2025-5060 - Bravis User WordPress Authentication Bypass Vulnerability

CVE ID : CVE-2025-5060
Published : Aug. 23, 2025, 7:15 a.m. | 1 day, 8 hours ago
Description : The Bravis User plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.0. This is due to the plugin not properly logging a user in with the data that was previously verified through the facebook_ajax_login_callback(). This makes it possible for unauthenticated attackers to log in as administrative users, as long as they have an existing account on the site, and access to the administrative user's email.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 07:15:00 GMT

read more

CVE-2025-5352 - "Lunary Analytics NEXT_PUBLIC_CUSTOM_SCRIPT Stored XSS Vulnerability"

CVE ID : CVE-2025-5352
Published : Aug. 23, 2025, 7:15 a.m. | 1 day, 8 hours ago
Description : A critical stored Cross-Site Scripting (XSS) vulnerability exists in the Analytics component of lunary-ai/lunary versions up to 1.9.23, where the NEXT_PUBLIC_CUSTOM_SCRIPT environment variable is directly injected into the DOM using dangerouslySetInnerHTML without any sanitization or validation. This allows arbitrary JavaScript execution in all users' browsers if an attacker can control the environment variable during deployment or through server compromise. The vulnerability can lead to complete account takeover, data exfiltration, malware distribution, and persistent attacks affecting all users until the environment variable is cleaned. The issue is fixed in version 1.9.25.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 07:15:00 GMT

read more

CVE-2025-5821 - "WordPress Case Theme User Plugin Authentication Bypass"

CVE ID : CVE-2025-5821
Published : Aug. 23, 2025, 7:15 a.m. | 1 day, 8 hours ago
Description : The Case Theme User plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.0.3. This is due to the plugin not properly logging a user in with the data that was previously verified through the facebook_ajax_login_callback(). This makes it possible for unauthenticated attackers to log in as administrative users, as long as they have an existing account on the site, and access to the administrative user's email.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 07:15:00 GMT

read more

CVE-2025-9357 - "Linksys Wi-Fi Router Stack-Based Buffer Overflow Vulnerability"

CVE ID : CVE-2025-9357
Published : Aug. 23, 2025, 6:15 a.m. | 1 day, 9 hours ago
Description : A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function langSwitchByBBS of the file /goform/langSwitchByBBS. The manipulation of the argument langSelectionOnly leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 06:15:00 GMT

read more

CVE-2025-7813 - "Eventin WordPress Plugin SSRF Vulnerability"

CVE ID : CVE-2025-7813
Published : Aug. 23, 2025, 6:15 a.m. | 1 day, 7 hours ago
Description : The Events Calendar, Event Booking, Registrations and Event Tickets – Eventin plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.0.37 via the proxy_image function. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 06:15:00 GMT

read more

CVE-2025-9048 - WordPress Wptobe-memberships Plugin File Deletion Vulnerability

CVE ID : CVE-2025-9048
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 8 hours ago
Description : The Wptobe-memberships plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the del_img_ajax_call() function in all versions up to, and including, 3.4.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-9131 - Ogulo – 360° Tour WordPress Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9131
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 8 hours ago
Description : The Ogulo – 360° Tour plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘slug’ parameter in all versions up to, and including, 1.0.11 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7842 - Silencesoft RSS Reader Plugin CSRF Vulnerability

CVE ID : CVE-2025-7842
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 6 hours ago
Description : The Silencesoft RSS Reader plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.6. This is due to missing or incorrect nonce validation on the 'sil_rss_edit_page' page. This makes it possible for unauthenticated attackers to delete RSS feeds via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7957 - WordPress ShortcodeHub Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-7957
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 6 hours ago
Description : The ShortcodeHub plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘author_link_target’ parameter in all versions up to, and including, 1.7.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-8062 - WordPress WS Theme Addons Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-8062
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 6 hours ago
Description : The WS Theme Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's ws_weather shortcode in all versions up to, and including, 2.0.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7839 - WordPress Restore Permanently Delete Post or Page Data CSRF

CVE ID : CVE-2025-7839
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 4 hours ago
Description : The Restore Permanently delete Post or Page Data plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the rp_dpo_dpa_ajax_dp_delete_data() function. This makes it possible for unauthenticated attackers to delete data via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7841 - Sertifier Certificate Badge Maker for WordPress - Tutor LMS Cross-Site Request Forgery (CSRF)

CVE ID : CVE-2025-7841
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 4 hours ago
Description : The Sertifier Certificate & Badge Maker for WordPress – Tutor LMS plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.19. This is due to missing or incorrect nonce validation on the 'sertifier_settings' page. This makes it possible for unauthenticated attackers to update the plugin's api key via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7827 - Ni WooCommerce Customer Product Report Unauthorized Data Modification

CVE ID : CVE-2025-7827
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 2 hours ago
Description : The Ni WooCommerce Customer Product Report plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ni_woocpr_action() function in all versions up to, and including, 1.2.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update plugin settings.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7828 - "WordPress WP Filter Combine RSS Feeds Unauthenticated Data Deletion Vulnerability"

CVE ID : CVE-2025-7828
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 2 hours ago
Description : The WP Filter & Combine RSS Feeds plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the post_listing_page() function in all versions up to, and including, 0.4. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete feeds.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7642 - WordPress Simpler Checkout Plugin Authentication Bypass

CVE ID : CVE-2025-7642
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 1 hour ago
Description : The Simpler Checkout plugin for WordPress is vulnerable to Authentication Bypass in versions 0.7.0 to 1.1.9. This is due to the plugin not properly verifying a user's identity prior to logging them in as an admin through the simplerwc_woocommerce_order_created() function. This makes it possible for unauthenticated attackers to log in as other users based on their order ID, which can be an administrator if a site admin has placed a test order.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-7821 - "WordPress WC Plus Favicon Logo Base Unauthorized Modification Vulnerability"

CVE ID : CVE-2025-7821
Published : Aug. 23, 2025, 5:15 a.m. | 1 day, 1 hour ago
Description : The WC Plus plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'pluswc_logo_favicon_logo_base' AJAX action in all versions up to, and including, 1.2.0. This makes it possible for unauthenticated attackers to update the site's favicon logo base.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-43766 - Liferay Portal/DPX Remote Code Execution Vulnerability

CVE ID : CVE-2025-43766
Published : Aug. 23, 2025, 5:15 a.m. | 1 day ago
Description : The Liferay Portal 7.4.0 through 7.3.3.131, and Liferay DXP 2024.Q4.0, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 GA through update 92 allows the upload of unrestricted files in the style books component that are processed within the environment enabling arbitrary code execution by attackers.
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-43764 - Liferay Portal Liferay DXP Regular Expression Denial of Service

CVE ID : CVE-2025-43764
Published : Aug. 23, 2025, 5:15 a.m. | 20 hours, 7 minutes ago
Description : Self-ReDoS (Regular expression Denial of Service) exists with Role Name search field of Kaleo Designer portlet JavaScript in Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q4.0 through 2024.Q4.1, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.20 and 7.4 GA through update 92, which allows authenticated users with permissions to update Kaleo Workflows to enter a malicious Regex pattern causing their browser to hang for a very long time.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-43765 - Liferay Portal Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-43765
Published : Aug. 23, 2025, 5:15 a.m. | 20 hours, 7 minutes ago
Description : A Stored cross-site scripting vulnerability in the Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q4.0, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.13 and 7.4 GA through update 92 allows an remote non-authenticated attacker to inject JavaScript into the text field from a web content.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 05:15:00 GMT

read more

CVE-2025-43767 - Liferay Portal Open Redirect

CVE ID : CVE-2025-43767
Published : Aug. 23, 2025, 4:15 a.m. | 9 hours, 12 minutes ago
Description : Open Redirect vulnerability in /c/portal/edit_info_item parameter redirect in Liferay Portal 7.4.3.86 through 7.4.3.131, and Liferay DXP 2024.Q3.1 through 2024.Q3.9, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 update 86 through update 92 allows an attacker to exploit this security vulnerability to redirect users to a malicious site.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 04:15:00 GMT

read more

CVE-2025-58043 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-58043
Published : Aug. 23, 2025, 3:15 a.m. | 10 hours, 13 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58042 - Apache HTTP Server Cross-Site Request Forgery

CVE ID : CVE-2025-58042
Published : Aug. 23, 2025, 3:15 a.m. | 9 hours, 12 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58041 - Apache HTTP Server Cross-Site Request Forgery

CVE ID : CVE-2025-58041
Published : Aug. 23, 2025, 3:15 a.m. | 7 hours, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58040 - Apache HTTP Server Authentication Bypass

CVE ID : CVE-2025-58040
Published : Aug. 23, 2025, 3:15 a.m. | 6 hours, 15 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58039 - Apache Struts Remote Code Execution

CVE ID : CVE-2025-58039
Published : Aug. 23, 2025, 3:15 a.m. | 5 hours, 11 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58036 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-58036
Published : Aug. 23, 2025, 3:15 a.m. | 3 hours, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58037 - Apache Solr SQL Injection

CVE ID : CVE-2025-58037
Published : Aug. 23, 2025, 3:15 a.m. | 3 hours, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58038 - Apache Struts Command Injection

CVE ID : CVE-2025-58038
Published : Aug. 23, 2025, 3:15 a.m. | 3 hours, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-43769 - Liferay Portal Liferay DXP Stored Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-43769
Published : Aug. 23, 2025, 3:15 a.m. | 3 hours, 11 minutes ago
Description : Stored cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q3.1 through 2024.Q3.8, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 GA through update 92 allows remote attackers to execute arbitrary web script or HTML via components tab.
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-58035 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-58035
Published : Aug. 23, 2025, 3:15 a.m. | 3 hours, 11 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-22860 - Norton Antivirus Unvalidated Redirect to Arbitrary URL

CVE ID : CVE-2025-22860
Published : Aug. 23, 2025, 3:15 a.m. | 1 hour, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-22861 - Apache Struts Command Injection

CVE ID : CVE-2025-22861
Published : Aug. 23, 2025, 3:15 a.m. | 1 hour, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-22863 - Apache HTTP Server Cross-Site Request Forgery

CVE ID : CVE-2025-22863
Published : Aug. 23, 2025, 3:15 a.m. | 1 hour, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-22864 - Apache HTTP Server Command Injection

CVE ID : CVE-2025-22864
Published : Aug. 23, 2025, 3:15 a.m. | 1 hour, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-24468 - Apache HTTP Server Cross-Site Request Forgery

CVE ID : CVE-2025-24468
Published : Aug. 23, 2025, 3:15 a.m. | 1 hour, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-24469 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-24469
Published : Aug. 23, 2025, 3:15 a.m. | 1 hour, 54 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-43768 - Liferay Portal Unauthenticated Admin Data Disclosure

CVE ID : CVE-2025-43768
Published : Aug. 23, 2025, 3:15 a.m. | 1 hour, 54 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15 and 7.4 GA through update 92 allows authenticated users without any permissions to access sensitive information of admin users using JSONWS APIs.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 03:15:00 GMT

read more

CVE-2025-43770 - Liferay Portal Liferay DXP Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43770
Published : Aug. 23, 2025, 2:15 a.m. | 2 hours, 54 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q4.0 through 2024.Q4.3, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 GA through update 92 allows an remote non-authenticated attacker to inject JavaScript into the referer or FORWARD_URL using %00 in those parameters.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Sat, 23 Aug 2025 02:15:00 GMT

read more

CVE-2025-8193 - "Apache HTTP Server Information Disclosure Vulnerability"

CVE ID : CVE-2025-8193
Published : Aug. 22, 2025, 11:15 p.m. | 5 hours, 54 minutes ago
Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 23:15:00 GMT

read more

CVE-2025-52450 - "Tableau Server Path Traversal"

CVE ID : CVE-2025-52450
Published : Aug. 22, 2025, 9:15 p.m. | 7 hours, 54 minutes ago
Description : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Salesforce Tableau Server on Windows, Linux (abdoc api - create-data-source-from-file-upload modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-52451 - "Salesforce Tableau Server Absolute Path Traversal Vulnerability"

CVE ID : CVE-2025-52451
Published : Aug. 22, 2025, 9:15 p.m. | 7 hours, 54 minutes ago
Description : Improper Input Validation vulnerability in Salesforce Tableau Server on Windows, Linux (tabdoc api - create-data-source-from-file-upload modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-55455 - DooTask Authenticated Arbitrary Download Vulnerability

CVE ID : CVE-2025-55455
Published : Aug. 22, 2025, 9:15 p.m. | 7 hours, 54 minutes ago
Description : DooTask v1.0.51 was dicovered to contain an authenticated arbitrary download vulnerability via the component /msg/sendtext.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-9355 - Linksys Wireless Router Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9355
Published : Aug. 22, 2025, 9:15 p.m. | 7 hours, 54 minutes ago
Description : A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this vulnerability is the function scheduleAdd of the file /goform/scheduleAdd. Performing manipulation of the argument ruleName results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-9356 - "Linksys Wireless Router Stack-Based Buffer Overflow Vulnerability"

CVE ID : CVE-2025-9356
Published : Aug. 22, 2025, 9:15 p.m. | 7 hours, 54 minutes ago
Description : A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this issue is the function inboundFilterAdd of the file /goform/inboundFilterAdd. Executing manipulation of the argument ruleName can lead to stack-based buffer overflow. The attack may be performed from a remote location. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2022-45133 - Mahara XML Font Font Traversal Code Execution Vulnerability

CVE ID : CVE-2022-45133
Published : Aug. 22, 2025, 9:15 p.m. | 5 hours, 54 minutes ago
Description : Mahara 21.10 before 21.10.6, 22.04 before 22.04.4, and 22.10 before 22.10.1 allows unsafe font upload for skins. A particularly structured XML file could allow one to traverse the server to obtain access to secure files or cause code execution based on the payload.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-26496 - Tableau Type Confusion Local Code Inclusion Vulnerability

CVE ID : CVE-2025-26496
Published : Aug. 22, 2025, 9:15 p.m. | 5 hours, 54 minutes ago
Description : Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Salesforce Tableau Server, Tableau Desktop on Windows, Linux (File Upload modules) allows Local Code Inclusion.This issue affects Tableau Server, Tableau Desktop: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Severity: 9.6 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-26497 - Tableau Server Absolute Path Traversal Vulnerability

CVE ID : CVE-2025-26497
Published : Aug. 22, 2025, 9:15 p.m. | 5 hours, 54 minutes ago
Description : Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (Flow Editor modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-26498 - "Salesforce Tableau Server File Upload Arbitrary File Write"

CVE ID : CVE-2025-26498
Published : Aug. 22, 2025, 9:15 p.m. | 5 hours, 54 minutes ago
Description : Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on Windows, Linux (establish-connection-no-undo modules) allows Absolute Path Traversal.This issue affects Tableau Server: before 2025.1.3, before 2024.2.12, before 2023.3.19.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-43761 - Liferay Portal and DXP Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43761
Published : Aug. 22, 2025, 9:15 p.m. | 5 hours, 54 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q4.0 through 2024.Q4.4, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 GA through update 92 allows an remote non-authenticated attacker to inject JavaScript into the frontend-editor-ckeditor-web/ckeditor/samples/old/ajax.html path
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2025-4609 - Google Chrome Mojo Sandbox Escape

CVE ID : CVE-2025-4609
Published : Aug. 22, 2025, 9:15 p.m. | 5 hours, 54 minutes ago
Description : Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 136.0.7103.113 allowed a remote attacker to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 21:15:00 GMT

read more

CVE-2022-31491 - Voltronic Power Remote Code Execution

CVE ID : CVE-2022-31491
Published : Aug. 22, 2025, 8:15 p.m. | 6 hours, 54 minutes ago
Description : Voltronic Power ViewPower through 1.04-24215, ViewPower Pro through 2.0-22165, and PowerShield Netguard before 1.04-23292 allows a remote attacker to run arbitrary code via an unspecified web interface related to detection of a managed UPS shutting down. An unauthenticated attacker can use this to run arbitrary code immediately regardless of any managed UPS state or presence.
Severity: 10.0 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 20:15:00 GMT

read more

CVE-2022-43110 - Voltronic Power ViewPower and PowerShield Netguard Unauthenticated Remote Command Execution

CVE ID : CVE-2022-43110
Published : Aug. 22, 2025, 8:15 p.m. | 6 hours, 54 minutes ago
Description : Voltronic Power ViewPower through 1.04-21353 and PowerShield Netguard before 1.04-23292 allows a remote attacker to configure the system via an unspecified web interface. An unauthenticated remote attacker can make changes to the system including: changing the web interface admin password, view/change system configuration, enumerate connected UPS devices and shut down connected UPS devices. This extends to being able to configure operating system commands that should run if the system detects a connected UPS shutting down.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 20:15:00 GMT

read more

CVE-2025-57801 - Gnark EdDSA/ECDSA Signature Malleability

CVE ID : CVE-2025-57801
Published : Aug. 22, 2025, 8:15 p.m. | 6 hours, 54 minutes ago
Description : gnark is a zero-knowledge proof system framework. In versions prior to 0.14.0, the Verify function in eddsa.go and ecdsa.go used the S value from a signature without asserting that 0 ≤ S < order, leading to a signature malleability vulnerability. Because gnark’s native EdDSA and ECDSA circuits lack essential constraints, multiple distinct witnesses can satisfy the same public inputs. In protocols where nullifiers or anti-replay checks are derived from R and S, this enables signature malleability and may allow double spending. This issue has been addressed in version 0.14.0.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 20:15:00 GMT

read more

CVE-2025-43762 - Liferay Portal File Upload Denial of Service

CVE ID : CVE-2025-43762
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.1, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allow users to upload an unlimited amount of files through the forms, the files are stored in the document_library allowing an attacker to cause a potential DDoS.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-4650 - Apache Web Meta Service SQL Injection Vulnerability

CVE ID : CVE-2025-4650
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : User with high privileges is able to introduce a SQLi using the Meta Service indicator page. Caused by an Improper Neutralization of Special Elements used in an SQL Command.This issue affects web: from 24.10.0 before 24.10.9, from 24.04.0 before 24.04.16, from 23.10.0 before 23.10.26.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-50858 - Easy Hosting Control Panel (EHCP) Reflected Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-50858
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : Reflected Cross-Site Scripting in the List MySQL Databases function in Easy Hosting Control Panel (EHCP) 20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via the action parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-50859 - Easy Hosting Control Panel (EHCP) Reflected Cross-Site Scripting

CVE ID : CVE-2025-50859
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : Reflected Cross-Site Scripting in the Change Template function in Easy Hosting Control Panel (EHCP) 20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via the template parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-51092 - VishnuSivadasVS LogIn-SignUp SQL Injection

CVE ID : CVE-2025-51092
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : The LogIn-SignUp project by VishnuSivadasVS is vulnerable to SQL Injection due to unsafe construction of SQL queries in DataBase.php. The functions logIn() and signUp() build queries by directly concatenating user input and unvalidated table names without using prepared statements. While a prepareData() function exists, it is insufficient to prevent SQL injection and does not sanitize the table name.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-54812 - Apache Log4cxx Cross-Site Scripting (XSS)

CVE ID : CVE-2025-54812
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : Improper Output Neutralization for Logs vulnerability in Apache Log4cxx. When using HTMLLayout, logger names are not properly escaped when writing out to the HTML file. If untrusted data is used to retrieve the name of a logger, an attacker could theoretically inject HTML or Javascript in order to hide information from logs or steal data from the user. In order to activate this, the following sequence must occur: * Log4cxx is configured to use HTMLLayout. * Logger name comes from an untrusted string * Logger with compromised name logs a message * User opens the generated HTML log file in their browser, leading to potential XSS Because logger names are generally constant strings, we assess the impact to users as LOW This issue affects Apache Log4cxx: before 1.5.0. Users are recommended to upgrade to version 1.5.0, which fixes the issue.
Severity: 2.1 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-54813 - Apache Log4cxx JSONLayout Log Injection Vulnerability

CVE ID : CVE-2025-54813
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : Improper Output Neutralization for Logs vulnerability in Apache Log4cxx. When using JSONLayout, not all payload bytes are properly escaped. If an attacker-supplied message contains certain non-printable characters, these will be passed along in the message and written out as part of the JSON message. This may prevent applications that consume these logs from correctly interpreting the information within them. This issue affects Apache Log4cxx: before 1.5.0. Users are recommended to upgrade to version 1.5.0, which fixes the issue.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-55454 - DooTask RCE File Upload Vulnerability

CVE ID : CVE-2025-55454
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-6791 - Centreon Web SQL Injection Vulnerability

CVE ID : CVE-2025-6791
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 54 minutes ago
Description : On the monitoring event logs page, it is possible to alter the http request to insert a payload in the DB. Caused by an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Centreon web (Monitoring event logs modules) allows SQL Injection. This issue affects web: from 24.10.0 before 24.10.9, from 24.04.0 before 24.04.16, from 23.10.0 before 23.10.26.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-43759 - Liferay Portal Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43759
Published : Aug. 22, 2025, 7:15 p.m. | 7 hours, 10 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allows admin users of a virtual instance to add pages that are not in the default/main virtual instance, then any tenant can create a list of all other tenants.
Severity: 6.7 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2025-43758 - Liferay Portal Unauthenticated File Access Vulnerability

CVE ID : CVE-2025-43758
Published : Aug. 22, 2025, 7:15 p.m. | 4 hours, 12 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.5, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15 and 7.4 GA through update 92 allows unauthenticated users (guests) to access via URL files uploaded by object entry and stored in document_library
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2022-45134 - Mahara XML Deserialization Code Execution Vulnerability

CVE ID : CVE-2022-45134
Published : Aug. 22, 2025, 7:15 p.m. | 1 hour, 59 minutes ago
Description : Mahara 21.10 before 21.10.6, 22.04 before 22.04.4, and 22.10 before 22.10.1 deserializes user input unsafely during skin import. A particularly structured XML file could cause code execution when being processed.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2024-48988 - Apache StreamPark SQL Injection

CVE ID : CVE-2024-48988
Published : Aug. 22, 2025, 7:15 p.m. | 1 hour, 59 minutes ago
Description : SQL Injection vulnerability in Apache StreamPark. This issue affects Apache StreamPark: from 2.1.4 before 2.1.6. Users are recommended to upgrade to version 2.1.6, which fixes the issue. This vulnerability is present only in the distribution package (SpringBoot platform) and does not involve Maven artifacts. It can only be exploited after a user has successfully logged into the platform (implying that the attacker would first need to compromise the login authentication). As a result, the associated risk is considered relatively low.
Severity: 7.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 19:15:00 GMT

read more

CVE-2024-50645 - MallChat Authentication Bypass

CVE ID : CVE-2024-50645
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : MallChat v1.0-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2024-52786 - Anji-Plus AJ-Report Authentication Bypass Remote Code Execution

CVE ID : CVE-2024-52786
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : An authentication bypass vulnerability in anji-plus AJ-Report up to v1.4.2 allows unauthenticated attackers to execute arbitrary code via a crafted URL.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2024-53496 - Apache My-site Unauthenticated Access Control Bypass

CVE ID : CVE-2024-53496
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : Incorrect access control in the doFilter function of my-site v1.0.2.RELEASE allows attackers to access sensitive components without authentication.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2024-53499 - Jeewms SQL Injection

CVE ID : CVE-2024-53499
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : Jeewms v3.7 was discovered to contain a SQL injection vulnerability via the CgReportController API.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2025-43760 - Liferay Portal Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43760
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.4, 2024.Q4.0 through 2024.Q4.6, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.20 and 7.4 GA through update 92 allows an remote authenticated attacker to inject JavaScript into the PortalUtil.escapeRedirect
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2025-52085 - Yoosee SQL Injection Vulnerability

CVE ID : CVE-2025-52085
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : An SQL injection vulnerability in Yoosee application v6.32.4 allows authenticated users to inject arbitrary SQL queries via a request to a backend API endpoint. Successful exploitation enables extraction of sensitive database information, including but not limited to, the database server banner and version, current database user and schema, the current DBMS user privileges, and arbitrary data from any table.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2025-52287 - OperaMasks SDK ELite Script Engine RCE via Deserialization

CVE ID : CVE-2025-52287
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : OperaMasks SDK ELite Script Engine v0.5.0 was discovered to contain a deserialization vulnerability.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2025-55581 - D-Link DCS-825L Persistent Root Code Execution Vulnerability

CVE ID : CVE-2025-55581
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure implementation in the mydlink-watch-dog.sh script. The script monitors and respawns the `dcp` and `signalc` binaries without validating their integrity, origin, or permissions. An attacker with filesystem access (e.g., via UART or firmware modification) may replace these binaries to achieve persistent arbitrary code execution with root privileges. The issue stems from improper handling of executable trust and absence of integrity checks in the watchdog logic.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2025-55613 - Tenda O3V2 Buffer Overflow Vulnerability

CVE ID : CVE-2025-55613
Published : Aug. 22, 2025, 6:15 p.m. | 2 hours, 59 minutes ago
Description : Tenda O3V2 1.0.0.12(3880) is vulnerable to Buffer Overflow in the fromSafeSetMacFilter function via the mac parameter.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 18:15:00 GMT

read more

CVE-2025-57770 - Zitadel Username Enumeration Vulnerability

CVE ID : CVE-2025-57770
Published : Aug. 22, 2025, 5:15 p.m. | 3 hours, 8 minutes ago
Description : The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. Versions 4.0.0 to 4.0.2, 3.0.0 to 3.3.6, and all versions prior to 2.71.15 are vulnerable to a username enumeration issue in the login interface. The login UI includes a security feature, Ignoring unknown usernames, that is intended to prevent username enumeration by returning a generic response for both valid and invalid usernames. This vulnerability allows an unauthenticated attacker to bypass this protection by submitting arbitrary userIDs to the select account page and distinguishing between valid and invalid accounts based on the system's response. For effective exploitation, an attacker needs to iterate through possible userIDs, but the impact can be limited by implementing rate limiting or similar measures. The issue has been patched in versions 4.0.3, 3.4.0, and 2.71.15.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-57771 - Roo Code Command Injection Vulnerability

CVE ID : CVE-2025-57771
Published : Aug. 22, 2025, 5:15 p.m. | 3 hours, 8 minutes ago
Description : Roo Code is an AI-powered autonomous coding agent that lives in users' editors. In versions prior to 3.25.5, Roo-Code fails to properly handle process substitution and single ampersand characters in the command parsing logic for auto-execute commands. If a user has enabled auto-approved execution for a command such as ls, an attacker who can submit crafted prompts to the agent may inject arbitrary commands to be executed alongside the intended command. Exploitation requires attacker access to submit prompts and for the user to have enabled auto-approved command execution, which is disabled by default. This vulnerability could allow an attacker to execute arbitrary code. The issue is fixed in version 3.25.5.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-57800 - Audiobookshelf OpenID Connect Callback URL Redirect Vulnerability

CVE ID : CVE-2025-57800
Published : Aug. 22, 2025, 5:15 p.m. | 3 hours, 8 minutes ago
Description : Audiobookshelf is an open-source self-hosted audiobook server. In versions 2.6.0 through 2.26.3, the application does not properly restrict redirect callback URLs during OIDC authentication. An attacker can craft a login link that causes Audiobookshelf to store an arbitrary callback in a cookie, which is later used to redirect the user after authentication. The server then issues a 302 redirect to the attacker-controlled URL, appending sensitive OIDC tokens as query parameters. This allows an attacker to obtain the victim's tokens and perform full account takeover, including creating persistent admin users if the victim is an administrator. Tokens are further leaked via browser history, Referer headers, and server logs. This vulnerability impacts all Audiobookshelf deployments using OIDC; no IdP misconfiguration is required. The issue is fixed in version 2.28.0. No known workarounds exist.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55622 - Reolink Task Hijacking Vulnerability

CVE ID : CVE-2025-55622
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : Reolink v4.54.0.4.20250526 was discovered to contain a task hijacking vulnerability due to inappropriate taskAffinity settings.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55623 - Reolink Android Debug Bridge Authentication Bypass

CVE ID : CVE-2025-55623
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : An issue in the lock screen component of Reolink v4.54.0.4.20250526 allows attackers to bypass authentication via using an ADB (Android Debug Bridge).
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55624 - Reolink Intent Redirection Vulnerability

CVE ID : CVE-2025-55624
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : An intent redirection vulnerability in Reolink v4.54.0.4.20250526 allows unauthorized attackers to access internal functions or access non-public components.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55625 - Reolink Open Redirect Vulnerability

CVE ID : CVE-2025-55625
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : An open redirect vulnerability in Reolink v4.54.0.4.20250526 allows attackers to redirect users to a malicious site via a crafted URL.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55626 - Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell Chime IDOR

CVE ID : CVE-2025-55626
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : An Insecure Direct Object Reference (IDOR) vulnerability in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allows unauthorized attackers to access the Admin-only settings and edit the session storage.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55627 - Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime Privilege Escalation

CVE ID : CVE-2025-55627
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allows authenticated attackers to create accounts with elevated privileges.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55629 - Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell Password Manipulation Vulnerability

CVE ID : CVE-2025-55629
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : Insecure permissions in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allow attackers to arbitrarily change other users' passwords via manipulation of the userName value.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55630 - Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime Authentication Bypass

CVE ID : CVE-2025-55630
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : A discrepancy in the error message returned by the login function of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 when entering the wrong username and password allows attackers to enumerate existing accounts.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55631 - Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime Session Management Vulnerability

CVE ID : CVE-2025-55631
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to manage users' sessions system wide instead of an account-by-account basis, potentially leading to a Denial of Service (DoS) via resource exhaustion.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55634 - Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime Unauthenticated DoS

CVE ID : CVE-2025-55634
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : Incorrect access control in the RTMP server settings of Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 allows unauthorized attackers to cause a Denial of Service (DoS) via initiating a large number of simultaneous ffmpeg-based stream pushes.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55637 - Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime Command Injection Vulnerability

CVE ID : CVE-2025-55637
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.4662_2503122283 was discovered to contain a command injection vulnerability via the setddns_pip_system() function.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55745 - UnoPim Laravel Formula Injection Vulnerability

CVE ID : CVE-2025-55745
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. Versions 0.3.0 and prior are vulnerable to CSV injection, also known as formula injection, in the Quick Export feature. This vulnerability allows attackers to inject malicious content into exported CSV files. When the CSV file is opened in spreadsheet applications such as Microsoft Excel, the malicious input may be interpreted as a formula or command, potentially resulting in the execution of arbitrary code on the victim's device. Successful exploitation can lead to remote code execution, including the establishment of a reverse shell. Users are advised to upgrade to version 0.3.1 or later.
Severity: 2.5 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-57105 - D-Link DI-7400G+ Router Command Injection Vulnerability

CVE ID : CVE-2025-57105
Published : Aug. 22, 2025, 5:15 p.m. | 1 hour, 52 minutes ago
Description : The DI-7400G+ router has a command injection vulnerability, which allows attackers to execute arbitrary commands on the device. The sub_478D28 function in in mng_platform.asp, and sub_4A12DC function in wayos_ac_server.asp of the jhttpd program, with the parameter ac_mng_srv_host.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2024-50644 - "Zhisheng17 Blog Authentication Bypass Vulnerability"

CVE ID : CVE-2024-50644
Published : Aug. 22, 2025, 5:15 p.m. | 15 minutes ago
Description : zhisheng17 blog 3.0.1-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2024-53494 - SpringBootBlog Unauthenticated Access Vulnerability

CVE ID : CVE-2024-53494
Published : Aug. 22, 2025, 5:15 p.m. | 15 minutes ago
Description : Incorrect access control in the preHandle function of SpringBootBlog v1.0.0 allows attackers to access sensitive components without authentication.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55398 - Mouse07410 Asn1c Integer Constraint Enforcement Vulnerability

CVE ID : CVE-2025-55398
Published : Aug. 22, 2025, 5:15 p.m. | 15 minutes ago
Description : An issue was discovered in mouse07410 asn1c thru 0.9.29 (2025-03-20) - a fork of vlm asn1c. In UPER (Unaligned Packed Encoding Rules), asn1c-generated decoders fail to enforce INTEGER constraints when the bound is positive and exceeds 32 bits in length, potentially allowing incorrect or malicious input to be processed.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55619 - Reolink Hardcoded Encryption Key and Initialization Vector Vulnerability

CVE ID : CVE-2025-55619
Published : Aug. 22, 2025, 5:15 p.m. | 15 minutes ago
Description : Reolink v4.54.0.4.20250526 was discovered to contain a hardcoded encryption key and initialization vector. An attacker can leverage this vulnerability to decrypt access tokens and web session tokens stored inside the app via reverse engineering.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55620 - Reolink XSS

CVE ID : CVE-2025-55620
Published : Aug. 22, 2025, 5:15 p.m. | 15 minutes ago
Description : A cross-site scripting (XSS) vulnerability in the valuateJavascript() function of Reolink v4.54.0.4.20250526 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55621 - Reolink IDOR

CVE ID : CVE-2025-55621
Published : Aug. 22, 2025, 5:15 p.m. | 15 minutes ago
Description : An Insecure Direct Object Reference (IDOR) vulnerability in Reolink v4.54.0.4.20250526 allows unauthorized attackers to access and download other users' profile photos via a crafted URL.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 17:15:00 GMT

read more

CVE-2025-55606 - Tenda AX3 Buffer Overflow Vulnerability

CVE ID : CVE-2025-55606
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 14 minutes ago
Description : Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the fromAdvSetMacMtuWan function via the serverName parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-55611 - D-Link DIR-619L Buffer Overflow Vulnerability

CVE ID : CVE-2025-55611
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 14 minutes ago
Description : D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formLanguageChange function via the nextPage parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-55741 - UnoPim Laravel Mass Delete Privilege Escalation Vulnerability

CVE ID : CVE-2025-55741
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 14 minutes ago
Description : UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. In versions 0.3.0 and earlier, users without the Delete privilege for products are unable to delete individual products via the standard endpoint, as expected. However, these users can bypass intended access controls by issuing requests to the mass-delete endpoint, allowing them to delete products without proper authorization. This vulnerability allows unauthorized product deletion, leading to potential data loss and business disruption. The issue is fixed in version 0.3.1. No known workarounds exist.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38665 - Linux Kernel CAN NULL Pointer Dereference Vulnerability

CVE ID : CVE-2025-38665
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: can: netlink: can_changelink(): fix NULL pointer deref of struct can_priv::do_set_mode Andrei Lalaev reported a NULL pointer deref when a CAN device is restarted from Bus Off and the driver does not implement the struct can_priv::do_set_mode callback. There are 2 code path that call struct can_priv::do_set_mode: - directly by a manual restart from the user space, via can_changelink() - delayed automatic restart after bus off (deactivated by default) To prevent the NULL pointer deference, refuse a manual restart or configure the automatic restart delay in can_changelink() and report the error via extack to user space. As an additional safety measure let can_restart() return an error if can_priv::do_set_mode is not set instead of dereferencing it unchecked.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38666 - AppleTalk Linux Kernel Appletalk AARP Race Condition Use-After-Free

CVE ID : CVE-2025-38666
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: net: appletalk: Fix use-after-free in AARP proxy probe The AARP proxy‐probe routine (aarp_proxy_probe_network) sends a probe, releases the aarp_lock, sleeps, then re-acquires the lock. During that window an expire timer thread (__aarp_expire_timer) can remove and kfree() the same entry, leading to a use-after-free. race condition: cpu 0 | cpu 1 atalk_sendmsg() | atif_proxy_probe_device() aarp_send_ddp() | aarp_proxy_probe_network() mod_timer() | lock(aarp_lock) // LOCK!! timeout around 200ms | alloc(aarp_entry) and then call | proxies[hash] = aarp_entry aarp_expire_timeout() | aarp_send_probe() | unlock(aarp_lock) // UNLOCK!! lock(aarp_lock) // LOCK!! | msleep(100); __aarp_expire_timer(&proxies[ct]) | free(aarp_entry) | unlock(aarp_lock) // UNLOCK!! | | lock(aarp_lock) // LOCK!! | UAF aarp_entry !! ================================================================== BUG: KASAN: slab-use-after-free in aarp_proxy_probe_network+0x560/0x630 net/appletalk/aarp.c:493 Read of size 4 at addr ffff8880123aa360 by task repro/13278 CPU: 3 UID: 0 PID: 13278 Comm: repro Not tainted 6.15.2 #3 PREEMPT(full) Call Trace: __dump_stack lib/dump_stack.c:94 [inline] dump_stack_lvl+0x116/0x1b0 lib/dump_stack.c:120 print_address_description mm/kasan/report.c:408 [inline] print_report+0xc1/0x630 mm/kasan/report.c:521 kasan_report+0xca/0x100 mm/kasan/report.c:634 aarp_proxy_probe_network+0x560/0x630 net/appletalk/aarp.c:493 atif_proxy_probe_device net/appletalk/ddp.c:332 [inline] atif_ioctl+0xb58/0x16c0 net/appletalk/ddp.c:857 atalk_ioctl+0x198/0x2f0 net/appletalk/ddp.c:1818 sock_do_ioctl+0xdc/0x260 net/socket.c:1190 sock_ioctl+0x239/0x6a0 net/socket.c:1311 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:906 [inline] __se_sys_ioctl fs/ioctl.c:892 [inline] __x64_sys_ioctl+0x194/0x200 fs/ioctl.c:892 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xcb/0x250 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x77/0x7f Allocated: aarp_alloc net/appletalk/aarp.c:382 [inline] aarp_proxy_probe_network+0xd8/0x630 net/appletalk/aarp.c:468 atif_proxy_probe_device net/appletalk/ddp.c:332 [inline] atif_ioctl+0xb58/0x16c0 net/appletalk/ddp.c:857 atalk_ioctl+0x198/0x2f0 net/appletalk/ddp.c:1818 Freed: kfree+0x148/0x4d0 mm/slub.c:4841 __aarp_expire net/appletalk/aarp.c:90 [inline] __aarp_expire_timer net/appletalk/aarp.c:261 [inline] aarp_expire_timeout+0x480/0x6e0 net/appletalk/aarp.c:317 The buggy address belongs to the object at ffff8880123aa300 which belongs to the cache kmalloc-192 of size 192 The buggy address is located 96 bytes inside of freed 192-byte region [ffff8880123aa300, ffff8880123aa3c0) Memory state around the buggy address: ffff8880123aa200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ffff8880123aa280: 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc >ffff8880123aa300: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb ^ ffff8880123aa380: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc ffff8880123aa400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ==================================================================
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38667 - Linux iio Buffer Overflow

CVE ID : CVE-2025-38667
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: iio: fix potential out-of-bound write The buffer is set to 20 characters. If a caller write more characters, count is truncated to the max available space in "simple_write_to_buffer". To protect from OoB access, check that the input size fit into buffer and add a zero terminator after copy to the end of the copied data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38668 - Linux Kernel Regulator NULL Pointer Dereference Vulnerability

CVE ID : CVE-2025-38668
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: regulator: core: fix NULL dereference on unbind due to stale coupling data Failing to reset coupling_desc.n_coupled after freeing coupled_rdevs can lead to NULL pointer dereference when regulators are accessed post-unbind. This can happen during runtime PM or other regulator operations that rely on coupling metadata. For example, on ridesx4, unbinding the 'reg-dummy' platform device triggers a panic in regulator_lock_recursive() due to stale coupling state. Ensure n_coupled is set to 0 to prevent access to invalid pointers.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38669 - "Linux Kernel DRM GEM NULL Pointer Dereference Vulnerability"

CVE ID : CVE-2025-38669
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: Revert "drm/gem-shmem: Use dma_buf from GEM object instance" This reverts commit 1a148af06000e545e714fe3210af3d77ff903c11. The dma_buf field in struct drm_gem_object is not stable over the object instance's lifetime. The field becomes NULL when user space releases the final GEM handle on the buffer object. This resulted in a NULL-pointer deref. Workarounds in commit 5307dce878d4 ("drm/gem: Acquire references on GEM handles for framebuffers") and commit f6bfc9afc751 ("drm/framebuffer: Acquire internal references on GEM handles") only solved the problem partially. They especially don't work for buffer objects without a DRM framebuffer associated. Hence, this revert to going back to using .import_attach->dmabuf. v3: - cc stable
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38670 - Linux kernel ARM64 DAIF Masking Vulnerability

CVE ID : CVE-2025-38670
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: arm64/entry: Mask DAIF in cpu_switch_to(), call_on_irq_stack() `cpu_switch_to()` and `call_on_irq_stack()` manipulate SP to change to different stacks along with the Shadow Call Stack if it is enabled. Those two stack changes cannot be done atomically and both functions can be interrupted by SErrors or Debug Exceptions which, though unlikely, is very much broken : if interrupted, we can end up with mismatched stacks and Shadow Call Stack leading to clobbered stacks. In `cpu_switch_to()`, it can happen when SP_EL0 points to the new task, but x18 stills points to the old task's SCS. When the interrupt handler tries to save the task's SCS pointer, it will save the old task SCS pointer (x18) into the new task struct (pointed to by SP_EL0), clobbering it. In `call_on_irq_stack()`, it can happen when switching from the task stack to the IRQ stack and when switching back. In both cases, we can be interrupted when the SCS pointer points to the IRQ SCS, but SP points to the task stack. The nested interrupt handler pushes its return addresses on the IRQ SCS. It then detects that SP points to the task stack, calls `call_on_irq_stack()` and clobbers the task SCS pointer with the IRQ SCS pointer, which it will also use ! This leads to tasks returning to addresses on the wrong SCS, or even on the IRQ SCS, triggering kernel panics via CONFIG_VMAP_STACK or FPAC if enabled. This is possible on a default config, but unlikely. However, when enabling CONFIG_ARM64_PSEUDO_NMI, DAIF is unmasked and instead the GIC is responsible for filtering what interrupts the CPU should receive based on priority. Given the goal of emulating NMIs, pseudo-NMIs can be received by the CPU even in `cpu_switch_to()` and `call_on_irq_stack()`, possibly *very* frequently depending on the system configuration and workload, leading to unpredictable kernel panics. Completely mask DAIF in `cpu_switch_to()` and restore it when returning. Do the same in `call_on_irq_stack()`, but restore and mask around the branch. Mask DAIF even if CONFIG_SHADOW_CALL_STACK is not enabled for consistency of behaviour between all configurations. Introduce and use an assembly macro for saving and masking DAIF, as the existing one saves but only masks IF.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38671 - Linux Kernel i2c Qup Timeout Information Disclosure Vulnerability

CVE ID : CVE-2025-38671
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: i2c: qup: jump out of the loop in case of timeout Original logic only sets the return value but doesn't jump out of the loop if the bus is kept active by a client. This is not expected. A malicious or buggy i2c client can hang the kernel in this case and should be avoided. This is observed during a long time test with a PCA953x GPIO extender. Fix it by changing the logic to not only sets the return value, but also jumps out of the loop and return to the caller with -ETIMEDOUT.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38672 - Linux Kernel - NULL Pointer Dereference in drm_gem_object

CVE ID : CVE-2025-38672
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: Revert "drm/gem-dma: Use dma_buf from GEM object instance" This reverts commit e8afa1557f4f963c9a511bd2c6074a941c308685. The dma_buf field in struct drm_gem_object is not stable over the object instance's lifetime. The field becomes NULL when user space releases the final GEM handle on the buffer object. This resulted in a NULL-pointer deref. Workarounds in commit 5307dce878d4 ("drm/gem: Acquire references on GEM handles for framebuffers") and commit f6bfc9afc751 ("drm/framebuffer: Acquire internal references on GEM handles") only solved the problem partially. They especially don't work for buffer objects without a DRM framebuffer associated. Hence, this revert to going back to using .import_attach->dmabuf. v3: - cc stable
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38673 - Linux Kernel - Null Pointer Dereference in DRM GEM Object Instance

CVE ID : CVE-2025-38673
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: Revert "drm/gem-framebuffer: Use dma_buf from GEM object instance" This reverts commit cce16fcd7446dcff7480cd9d2b6417075ed81065. The dma_buf field in struct drm_gem_object is not stable over the object instance's lifetime. The field becomes NULL when user space releases the final GEM handle on the buffer object. This resulted in a NULL-pointer deref. Workarounds in commit 5307dce878d4 ("drm/gem: Acquire references on GEM handles for framebuffers") and commit f6bfc9afc751 ("drm/framebuffer: Acquire internal references on GEM handles") only solved the problem partially. They especially don't work for buffer objects without a DRM framebuffer associated. Hence, this revert to going back to using .import_attach->dmabuf. v3: - cc stable
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38674 - "Linux Kernel DRM Prime DMA Buffer NULL Pointer Dereference Vulnerability"

CVE ID : CVE-2025-38674
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: Revert "drm/prime: Use dma_buf from GEM object instance" This reverts commit f83a9b8c7fd0557b0c50784bfdc1bbe9140c9bf8. The dma_buf field in struct drm_gem_object is not stable over the object instance's lifetime. The field becomes NULL when user space releases the final GEM handle on the buffer object. This resulted in a NULL-pointer deref. Workarounds in commit 5307dce878d4 ("drm/gem: Acquire references on GEM handles for framebuffers") and commit f6bfc9afc751 ("drm/framebuffer: Acquire internal references on GEM handles") only solved the problem partially. They especially don't work for buffer objects without a DRM framebuffer associated. Hence, this revert to going back to using .import_attach->dmabuf. v3: - cc stable
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-38675 - Linux Kernel Xfrm State Pointer Initialization Vulnerability

CVE ID : CVE-2025-38675
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: xfrm: state: initialize state_ptrs earlier in xfrm_state_find In case of preemption, xfrm_state_look_at will find a different pcpu_id and look up states for that other CPU. If we matched a state for CPU2 in the state_cache while the lookup started on CPU1, we will jump to "found", but the "best" state that we got will be ignored and we will enter the "acquire" block. This block uses state_ptrs, which isn't initialized at this point. Let's initialize state_ptrs just after taking rcu_read_lock. This will also prevent a possible misuse in the future, if someone adjusts this function.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-43751 - Liferay Portal User Enumeration Vulnerability

CVE ID : CVE-2025-43751
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92 allows remote attackers to determine if an account exist in the application via the create account page.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-50674 - OpenMediaVault Root Privilege Escalation Vulnerability

CVE ID : CVE-2025-50674
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : An issue was discovered in the changePassword method in file /usr/share/php/openmediavault/system/user.inc in OpenMediaVault 7.4.17 allowing local authenticated attackers to escalate privileges to root.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-50733 - NextChat AI Chat Interface Cross-Site Scripting (XSS)

CVE ID : CVE-2025-50733
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : NextChat contains a cross-site scripting (XSS) vulnerability in the HTMLPreview component of artifacts.tsx that allows attackers to execute arbitrary JavaScript code when HTML content is rendered in the AI chat interface. The vulnerability occurs because user-influenced HTML from AI responses is rendered in an iframe with 'allow-scripts' sandbox permission without proper sanitization. This can be exploited through specifically crafted prompts that cause the AI to generate malicious HTML/JavaScript code. When a user views the HTML preview, the injected JavaScript executes in the user's browser context, potentially allowing attackers to exfiltrate sensitive information (including API keys stored in localStorage), perform actions on behalf of the user, and steal session data.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-51605 - Shopizer CORS Misconfiguration Vulnerability

CVE ID : CVE-2025-51605
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : An issue was discovered in Shopizer 3.2.7. The server's CORS implementation reflects the client-supplied Origin header verbatim into Access-Control-Allow-Origin without any whitelist validation, while also enabling Access-Control-Allow-Credentials: true. This allows any malicious origin to make authenticated cross-origin requests and read sensitive responses.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-52094 - PDQ Smart Deploy Local Privilege Escalation Vulnerability

CVE ID : CVE-2025-52094
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : Insecure Permissions vulnerability in PDQ Smart Deploy V.3.0.2040 allows a local attacker to execute arbtirary code via the \HKLM\SYSTEM\Setup\SmartDeploy component
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-52095 - PDQ Smart Deploy Privilege Escalation Vulnerability

CVE ID : CVE-2025-52095
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : An issue in PDQ Smart Deploy V.3.0.2040 allows an attacker to escalate privileges via the Credential encryption routines in SDCommon.dll
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-53363 - Dpanel Arbitrary File Read Vulnerability

CVE ID : CVE-2025-53363
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : dpanel is an open source server management panel written in Go. In versions 1.2.0 through 1.7.2, dpanel allows authenticated users to read arbitrary files from the server via the /api/app/compose/get-from-uri API endpoint. The vulnerability exists in the GetFromUri function in app/application/http/controller/compose.go, where the uri parameter is passed directly to os.ReadFile without proper validation or access control. A logged-in attacker can exploit this flaw to read sensitive files from the host system, leading to information disclosure. No patched version is available as of this writing.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-55599 - D-Link DIR-619L Buffer Overflow Vulnerability

CVE ID : CVE-2025-55599
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formWlanSetup function via the parameter f_wds_wepKey.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-55602 - D-Link DIR-619L Buffer Overflow

CVE ID : CVE-2025-55602
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : D-Link DIR-619L 2.06B01 is vulnerable to Buffer Overflow in the formSysCmd function via the submit-url parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-55603 - Tenda AX3 NTP Buffer Overflow

CVE ID : CVE-2025-55603
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the fromSetSysTime function via the ntpServer parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-55605 - Tenda AX3 Buffer Overflow Vulnerability

CVE ID : CVE-2025-55605
Published : Aug. 22, 2025, 4:15 p.m. | 1 hour, 10 minutes ago
Description : Tenda AX3 V16.03.12.10_CN is vulnerable to Buffer Overflow in the saveParentControlInfo function via the deviceName parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 16:15:00 GMT

read more

CVE-2025-33120 - IBM QRadar SIEM Privilege Escalation Vulnerability

CVE ID : CVE-2025-33120
Published : Aug. 22, 2025, 3:15 p.m. | 56 minutes ago
Description : IBM QRadar SIEM 7.5 through 7.5.0 UP13 could allow an authenticated user to escalate their privileges via a misconfigured cronjob due to execution with unnecessary privileges.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 15:15:00 GMT

read more

CVE-2025-36042 - IBM QRadar SIEM Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-36042
Published : Aug. 22, 2025, 3:15 p.m. | 56 minutes ago
Description : IBM QRadar SIEM 7.5 through 7.5.0 Dashboard is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 15:15:00 GMT

read more

CVE-2025-55573 - QuantumNous new-api Remote Cross Site Scripting (XSS)

CVE ID : CVE-2025-55573
Published : Aug. 22, 2025, 3:15 p.m. | 56 minutes ago
Description : QuantumNous new-api v.0.8.5.2 is vulnerable to Cross Site Scripting (XSS).
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 15:15:00 GMT

read more

CVE-2009-10006 - "UFO: Alien Invasion IRC Client Buffer Overflow"

CVE ID : CVE-2009-10006
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : UFO: Alien Invasion versions up to and including 2.2.1 contain a buffer overflow vulnerability in its built-in IRC client component. When the client connects to an IRC server and receives a crafted numeric reply (specifically a 001 message), the application fails to properly validate the length of the response string. This results in a stack-based buffer overflow, which may corrupt control flow structures and allow arbitrary code execution. The vulnerability is triggered during automatic IRC connection handling and does not require user interaction beyond launching the game.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2024-56179 - MindManager File Attachment Directory Traversal Vulnerability

CVE ID : CVE-2024-56179
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : In MindManager Windows versions prior to 24.1.150, attackers could potentially write to unexpected directories in victims' machines via directory traversal if victims opened file attachments located in malicious mmap files.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2024-58239 - "Linux TLS Merger Vulnerability"

CVE ID : CVE-2024-58239
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: tls: stop recv() if initial process_rx_list gave us non-DATA If we have a non-DATA record on the rx_list and another record of the same type still on the queue, we will end up merging them: - process_rx_list copies the non-DATA record - we start the loop and process the first available record since it's of the same type - we break out of the loop since the record was not DATA Just check the record type and jump to the end in case process_rx_list did some work.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2025-38616 - "Linux TLS ULP Data Disappearance Out-of-Bounds Read"

CVE ID : CVE-2025-38616
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses some non-standard read API (eg. zerocopy ones). Replace the WARN_ON() and a buggy early exit (which leaves anchor pointing to a freed skb) with real error handling. Wipe the parsing state and tell the reader to retry. We already reload the anchor every time we (re)acquire the socket lock, so the only condition we need to avoid is an out of bounds read (not having enough bytes in the socket for previously parsed record len). If some data was read from under TLS but there's enough in the queue we'll reload and decrypt what is most likely not a valid TLS record. Leading to some undefined behavior from TLS perspective (corrupting a stream? missing an alert? missing an attack?) but no kernel crash should take place.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2025-38617 - Linux Kernel Packet Netdev Up Event Race Condition

CVE ID : CVE-2025-38617
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: net/packet: fix a race in packet_set_ring() and packet_notifier() When packet_set_ring() releases po->bind_lock, another thread can run packet_notifier() and process an NETDEV_UP event. This race and the fix are both similar to that of commit 15fe076edea7 ("net/packet: fix a race in packet_bind() and packet_notifier()"). There too the packet_notifier NETDEV_UP event managed to run while a po->bind_lock critical section had to be temporarily released. And the fix was similarly to temporarily set po->num to zero to keep the socket unhooked until the lock is retaken. The po->bind_lock in packet_set_ring and packet_notifier precede the introduction of git history.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2025-38618 - "vsock: VMADDR_PORT_ANY Binding Vulnerability"

CVE ID : CVE-2025-38618
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a vsock to autobind to VMADDR_PORT_ANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept() also has port VMADDR_PORT_ANY but is not on the list of unbound sockets. Binding it will result in an extra refcount decrement similar to the one fixed in fcdd2242c023 (vsock: Keep the binding until socket destruction). Modify the check in __vsock_bind_connectible() to also prevent binding to VMADDR_PORT_ANY.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2025-50691 - MCSManager Root Privilege Escalation Vulnerability

CVE ID : CVE-2025-50691
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : MCSManager 10.5.3 daemon process runs as a root account by default, and its sensitive data (including tokens and terminal content) is stored in the data directory, readable by all users. Other users on the system can read the daemon's key and use it to log in, leading to privilege escalation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2025-51825 - JeecgBoot SQL Injection Vulnerability

CVE ID : CVE-2025-51825
Published : Aug. 22, 2025, 2:15 p.m. | 1 hour, 56 minutes ago
Description : JeecgBoot versions from 3.4.3 up to 3.8.0 were found to contain a SQL injection vulnerability in the /jeecg-boot/online/cgreport/head/parseSql endpoint, which allows bypassing SQL blacklist restrictions.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 14:15:00 GMT

read more

CVE-2025-57890 - Pierre Lannoy Sessions Cross-site Scripting

CVE ID : CVE-2025-57890
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pierre Lannoy Sessions allows Stored XSS. This issue affects Sessions: from n/a through 3.2.0.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57891 - Wpecommerce Stored Cross-site Scripting

CVE ID : CVE-2025-57891
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpecommerce Recurring PayPal Donations allows Stored XSS. This issue affects Recurring PayPal Donations: from n/a through 1.8.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57892 - Jeff Starr Simple Statistics for Feeds CSRF Vulnerability

CVE ID : CVE-2025-57892
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : Cross-Site Request Forgery (CSRF) vulnerability in Jeff Starr Simple Statistics for Feeds allows Cross Site Request Forgery. This issue affects Simple Statistics for Feeds: from n/a through 20250322.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57893 - Epsiloncool WP Fast Total Search CSRF Vulnerability

CVE ID : CVE-2025-57893
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : Cross-Site Request Forgery (CSRF) vulnerability in Epsiloncool WP Fast Total Search allows Cross Site Request Forgery. This issue affects WP Fast Total Search: from n/a through 1.79.270.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57894 - WPPizza Missing Authorization Vulnerability

CVE ID : CVE-2025-57894
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : Missing Authorization vulnerability in ollybach WPPizza allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WPPizza: from n/a through 3.19.8.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57895 - JobWP CSRF Vulnerability

CVE ID : CVE-2025-57895
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : Cross-Site Request Forgery (CSRF) vulnerability in Hossni Mubarak JobWP allows Cross Site Request Forgery. This issue affects JobWP: from n/a through 2.4.3.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57896 - Church Admin Missing Authorization Vulnerability

CVE ID : CVE-2025-57896
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : Missing Authorization vulnerability in andy_moyle Church Admin allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Church Admin: from n/a through 5.0.26.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9254 - Uniong WebITR Authentication Bypass

CVE ID : CVE-2025-9254
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : WebITR developed by Uniong has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to log into the system as arbitrary users by exploiting a specific functionality.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9255 - Uniong WebITR SQL Injection

CVE ID : CVE-2025-9255
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : WebITR developed by Uniong has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read database contents.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9256 - Uniong WebITR Arbitrary File Reading Vulnerability

CVE ID : CVE-2025-9256
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9257 - Uniong WebITR Arbitrary File Reading Vulnerability

CVE ID : CVE-2025-9257
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9258 - Uniong WebITR Arbitrary File Reading Vulnerability

CVE ID : CVE-2025-9258
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9259 - Uniong WebITR Arbitrary File Reading Vulnerability

CVE ID : CVE-2025-9259
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : WebITR developed by Uniong has an Arbitrary File Reading vulnerability, allowing remote attackers with regular privileges to exploit Absolute Path Traversal to download arbitrary system files.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9331 - Spacious WordPress Cross-Site Request Forgery (CSRF) and Authentication Bypass

CVE ID : CVE-2025-9331
Published : Aug. 22, 2025, 12:15 p.m. | 3 hours, 56 minutes ago
Description : The Spacious theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'welcome_notice_import_handler' function in all versions up to, and including, 1.9.11. This makes it possible for authenticated attackers, with Subscriber-level access and above, to import demo data into the site.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57884 - Wpsoul Greenshift Missing Authorization Vulnerability

CVE ID : CVE-2025-57884
Published : Aug. 22, 2025, 12:15 p.m. | 1 hour, 56 minutes ago
Description : Missing Authorization vulnerability in wpsoul Greenshift allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Greenshift: from n/a through 12.1.1.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57885 - Shahjahan Jewel Fluent Support CSRF Vulnerability

CVE ID : CVE-2025-57885
Published : Aug. 22, 2025, 12:15 p.m. | 1 hour, 56 minutes ago
Description : Cross-Site Request Forgery (CSRF) vulnerability in Shahjahan Jewel Fluent Support allows Cross Site Request Forgery. This issue affects Fluent Support: from n/a through 1.9.1.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57886 - Equalize Digital Accessibility Checker Authorization Bypass

CVE ID : CVE-2025-57886
Published : Aug. 22, 2025, 12:15 p.m. | 1 hour, 56 minutes ago
Description : Authorization Bypass Through User-Controlled Key vulnerability in Equalize Digital Accessibility Checker by Equalize Digital allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Accessibility Checker by Equalize Digital: from n/a through 1.30.0.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57887 - NooTheme Jobmonster Cross-Site Scripting (XSS)

CVE ID : CVE-2025-57887
Published : Aug. 22, 2025, 12:15 p.m. | 1 hour, 56 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NooTheme Jobmonster allows Stored XSS. This issue affects Jobmonster: from n/a through 4.8.0.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-57888 - NooTheme Jobmonster Information Disclosure

CVE ID : CVE-2025-57888
Published : Aug. 22, 2025, 12:15 p.m. | 1 hour, 56 minutes ago
Description : Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NooTheme Jobmonster allows Retrieve Embedded Sensitive Data. This issue affects Jobmonster: from n/a through 4.8.0.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 12:15:00 GMT

read more

CVE-2025-9340 - Bouncy Castle for Java BC-FIPS Out-of-Bounds Write Vulnerability

CVE ID : CVE-2025-9340
Published : Aug. 22, 2025, 10:15 a.m. | 3 hours, 56 minutes ago
Description : Out-of-bounds Write vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bc-fips on All (API modules). This vulnerability is associated with program files org/bouncycastle/jcajce/provider/BaseCipher. This issue affects Bouncy Castle for Java: from BC-FJA 2.1.0 through 2.1.0.
Severity: 0.0 | NONE
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 10:15:00 GMT

read more

CVE-2025-9341 - Bouncy Castle for Java FIPS: Uncontrolled Resource Consumption in AESNativeCBC Java API

CVE ID : CVE-2025-9341
Published : Aug. 22, 2025, 9:15 a.m. | 4 hours, 56 minutes ago
Description : Uncontrolled Resource Consumption vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java FIPS bc-fips on All (API modules) allows Excessive Allocation. This vulnerability is associated with program files org/bouncycastle/crypto/fips/AESNativeCBC.Java. This issue affects Bouncy Castle for Java FIPS: from BC-FJA 2.1.0 through 2.1.0.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 09:15:00 GMT

read more

CVE-2025-8678 - WordPress WP Crontrol SSRF

CVE ID : CVE-2025-8678
Published : Aug. 22, 2025, 8:15 a.m. | 5 hours, 56 minutes ago
Description : The WP Crontrol plugin for WordPress is vulnerable to Server-Side Request Forgery in versions 1.17.0 to 1.19.1 via the 'wp_remote_request' function. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 08:15:00 GMT

read more

CVE-2025-57699 - Western Digital Kitfox for Windows Unquoted Service Path Privilege Escalation Vulnerability

CVE ID : CVE-2025-57699
Published : Aug. 22, 2025, 7:15 a.m. | 6 hours, 56 minutes ago
Description : Western Digital Kitfox for Windows provided by Western Digital Corporation registers a Windows service with an unquoted file path. A user with the write permission on the root directory of the system drive may execute arbitrary code with the SYSTEM privilege.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 07:15:00 GMT

read more

Appel à manifestation d‘intérêt : renforcement de l’accompagnement local aux enjeux cyber

Appel à manifestation d‘intérêt : renforcement de l’accompagnement local aux enjeux cyber

anssiadm
L'ANSSI ouvre un appel à manifestation d‘intérêt (AMI) pour le renforcement de l’accompagnement local aux enjeux de cybersécurité, du 22 août au 15 septembre 2025.

En tant qu’autorité nationale en matière de cybersécurité et de cyberdéfense, l’Agence nationale de la sécurité des systèmes d’information (ANSSI) prépare et accompagne la montée en maturité cyber de la Nation.

La prochaine transposition en droit français de la directive européenne NIS2, face à la démultiplication de la menace cyber et au constat de la généralisation des attaques via la chaîne de sous-traitance, introduit la nécessité de démultiplier les capacités d’assistance et d’accompagnement pour encore mieux prendre en compte la totalité du tissu économique, institutionnel et social, notamment dans les territoires. Si ces nouveaux bénéficiaires peuvent compter sur l’émergence actuelle de nombreuses entités pour les appuyer dans ces territoires, ils tireraient néanmoins profit d’un travail de renforcement et de mise en cohérence du dispositif d’accompagnement de proximité.

Les objectifs de l’appel à manifestation d’intérêt

Ce projet de financement souhaite encourager les initiatives permettant de renforcer le dispositif national de cyberdéfense développé dans la Revue nationale stratégique. Par cet intermédiaire, l’objectif est de pouvoir élever le niveau général de cybersécurité au profit des entités les plus vulnérables aux cyberattaques par un accompagnement cyber de proximité. Celui-ci doit également se traduire dans une démarche d’assistance lors de la survenance d’une cyberattaque que ce soit autant sur les démarches réglementaires que techniques et opérationnelles.

Le planning prévisionnel de l’AMI

  • 22 août 2025 : ouverture de l’AMI.
  • 15 septembre 2025 à 12 heures (heure de Paris) : clôture de l’AMI.
  • Du 15 septembre au 22 septembre 2025 : instruction des dossiers déposés.

Retrouvez l’ensemble des modalités de l’AMI dans le document disponible ci-dessous.

Fri, 22 Aug 2025 07:13:00 GMT

read more

CVE-2025-8281 - Talroo WordPress Reflected Cross-Site Scripting

CVE ID : CVE-2025-8281
Published : Aug. 22, 2025, 6:15 a.m. | 7 hours, 56 minutes ago
Description : The WP Talroo WordPress plugin through 2.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin and unauthenticated users.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 06:15:00 GMT

read more

CVE-2025-41452 - Danfoss AK-SM8xxA Series Web Interface Configuration Setting Vulnerability

CVE ID : CVE-2025-41452
Published : Aug. 22, 2025, 3:15 a.m. | 10 hours, 56 minutes ago
Description : Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow for a denial of service attack induced by improper handling of exceptional conditions
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 03:15:00 GMT

read more

CVE-2025-41451 - Danfoss AK-SM8xxA Series Command Injection

CVE ID : CVE-2025-41451
Published : Aug. 22, 2025, 3:15 a.m. | 8 hours, 58 minutes ago
Description : Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command ('Command Injection') in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 03:15:00 GMT

read more

CVE-2025-43752 - Liferay Portal File Upload Denial of Service (DoS) Vulnerability

CVE ID : CVE-2025-43752
Published : Aug. 22, 2025, 1:16 a.m. | 10 hours, 57 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.4, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15 and 7.4 GA through update 92 allow users to upload an unlimited amount of files through the object entries attachment fields, the files are stored in the document_library allowing an attacker to cause a potential DDoS.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Fri, 22 Aug 2025 01:16:00 GMT

read more

CVE-2023-3948 - CVE-2021-4034: Cisco ASA SSL/TLS Downgrade Vulnerability

CVE ID : CVE-2023-3948
Published : Aug. 21, 2025, 11:15 p.m. | 12 hours, 58 minutes ago
Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 23:15:00 GMT

read more

CVE-2023-4131 - CVE-2022-1234: OpenSSL SSL/TLS Denial of Service

CVE ID : CVE-2023-4131
Published : Aug. 21, 2025, 11:15 p.m. | 12 hours, 58 minutes ago
Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 23:15:00 GMT

read more

CVE-2023-4143 - Apache Struts Remote Code Execution Vulnerability

CVE ID : CVE-2023-4143
Published : Aug. 21, 2025, 11:15 p.m. | 12 hours, 58 minutes ago
Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 23:15:00 GMT

read more

CVE-2025-43753 - Liferay Portal Liferay DXP Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43753
Published : Aug. 21, 2025, 11:15 p.m. | 12 hours, 58 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.32 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 update 32 through update 92 allows an remote authenticated user to inject JavaScript into the embedded message field from the form container.
Severity: 2.1 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 23:15:00 GMT

read more

CVE-2009-20004 - GAlan Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2009-20004
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : gAlan 0.2.1, a modular audio processing environment for Windows, is vulnerable to a stack-based buffer overflow when parsing .galan files. The application fails to properly validate the length of input data, allowing a specially crafted file to overwrite the stack and execute arbitrary code. Exploitation requires local interaction, typically by convincing a user to open the malicious file.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20007 - Seagull FTP Client Stack-based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20007
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : Seagull FTP Client <= v3.3 Build 409 contains a stack-based buffer overflow vulnerability in its FTP directory listing parser. When the client connects to an FTP server and receives a crafted response to a LIST command containing an excessively long filename, the application fails to properly validate input length, resulting in a buffer overflow that overwrites the Structured Exception Handler (SEH). This may allow remote attackers to execute arbitrary code on the client system. This product line was discontinued and users were advised to use BlueZone Secure FTP instead, at the time of disclosure.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20034 - Gekko Manager FTP Client FTP Buffer Overflow

CVE ID : CVE-2010-20034
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : Gekko Manager FTP Client <= 0.77 contains a stack-based buffer overflow in its FTP directory listing parser. When processing a server response to a LIST command, the client fails to properly validate the length of filenames. A crafted response containing an overly long filename can overwrite the Structured Exception Handler (SEH), potentially allowing remote code execution.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20107 - FTP Synchronizer Professional FTP Server Stack-Based Buffer Overflow

CVE ID : CVE-2010-20107
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : A stack-based buffer overflow exists in FTP Synchronizer Professional <= v4.0.73.274. When the client connects to an FTP server and issues a LIST command—typically during sync preview or profile creation—the server’s response containing an overly long filename triggers a buffer overflow. This results in the corruption of the Structured Exception Handler (SEH), potentially allowing remote code execution.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20108 - FTPPad Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20108
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : FTPPad <= 1.2.0 contains a stack-based buffer overflow vulnerability in its FTP directory listing parser. When the client connects to an FTP server and receives a crafted response to a LIST command containing an excessively long directory and filename, the application fails to properly validate input length. This results in a buffer overflow that overwrites the saved Extended Instruction Pointer (EIP), allowing remote attackers to execute arbitrary code.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20113 - EasyFTP Server Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20113
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : EasyFTP Server 1.7.0.11 and earlier contains a stack-based buffer overflow vulnerability in its HTTP interface. When processing a GET request to list.html, the server fails to properly validate the length of the path parameter. Supplying an excessively long value causes a buffer overflow on the stack, potentially corrupting control flow structures. The vulnerability is exposed through the embedded web server and does not require authentication due to default anonymous access. The issue was resolved in version 1.7.0.12, after which the product was renamed to UplusFtp.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20114 - VariCAD EN Stack-Based Buffer Overflow

CVE ID : CVE-2010-20114
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : VariCAD EN up to and including version 2010-2.05 is vulnerable to a stack-based buffer overflow when parsing .dwb drawing files. The application fails to properly validate the length of input data embedded in the file, allowing a crafted .dwb file to overwrite critical memory structures. This flaw can be exploited locally by convincing a user to open a malicious file, resulting in arbitrary code execution.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20115 - Arcane Software Vermillion FTP Daemon PORT Command Memory Corruption Vulnerability

CVE ID : CVE-2010-20115
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : Arcane Software’s Vermillion FTP Daemon (vftpd) versions up to and including 1.31 contains a memory corruption vulnerability triggered by a malformed FTP PORT command. The flaw arises from an out-of-bounds array access during input parsing, allowing an attacker to manipulate stack memory and potentially execute arbitrary code. Exploitation requires direct access to the FTP service and is constrained by a single execution attempt if the daemon is installed as a Windows service.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20120 - Maple Maplet Remote Code Execution

CVE ID : CVE-2010-20120
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : Maple versions up to and including 13's Maplet framework allows embedded commands to be executed automatically when a .maplet file is opened. This behavior bypasses standard security restrictions that normally prevent code execution in regular Maple worksheets. The vulnerability enables attackers to craft malicious .maplet files that execute arbitrary code without user interaction.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20122 - Xftp FTP Client Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20122
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : Xftp FTP Client version up to and including 3.0 (build 0238) contain a stack-based buffer overflow vulnerability triggered by a maliciously crafted PWD response from an FTP server. When the client connects to a server and receives an overly long directory string in response to the PWD command, the client fails to properly validate the length of the input before copying it into a fixed-size buffer. This results in memory corruption and allows remote attackers to execute arbitrary code on the client system.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2010-20123 - Steinberg MyMP3Player Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20123
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : Steinberg MyMP3Player version 3.0 (build 3.0.0.67) is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and execute arbitrary code. This vulnerability can be exploited locally by convincing a user to open a malicious .m3u file.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2025-43747 - Liferay DXP SSRF

CVE ID : CVE-2025-43747
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : A server-side request forgery (SSRF) vulnerability exists in the Liferay DXP 2025.Q2.0 through 2025.Q2.3 due to insecure domain validation on analytics.cloud.domain.allowed, allowing an attacker to perform requests by change the domain and bypassing the validation method, this insecure validation is not distinguishing between trusted subdomains and malicious domains.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2025-51606 - Hippo4J JWT Secret Key Hard-Coded Vulnerability

CVE ID : CVE-2025-51606
Published : Aug. 21, 2025, 9:15 p.m. | 14 hours, 58 minutes ago
Description : hippo4j 1.0.0 to 1.5.0, uses a hard-coded secret key in its JWT (JSON Web Token) creation. This allows attackers with access to the source code or compiled binary to forge valid access tokens and impersonate any user, including privileged ones such as "admin". The vulnerability poses a critical security risk in systems where authentication and authorization rely on the integrity of JWTs.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2009-20003 - Xenorate Windows Multimedia Player Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2009-20003
Published : Aug. 21, 2025, 9:15 p.m. | 12 hours, 45 minutes ago
Description : Xenorate versions up to and including 2.50, a Windows-based multimedia player, is vulnerable to a stack-based buffer overflow when processing .xpl playlist files. The application fails to properly validate the length of input data, allowing an attacker to craft a malicious .xpl file that overwrites the Structured Exception Handler (SEH) and enables arbitrary code execution. Exploitation requires local interaction, typically by convincing a user to open the crafted file.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2009-20002 - Millenium MP3 Studio Stack-Based Buffer Overflow

CVE ID : CVE-2009-20002
Published : Aug. 21, 2025, 9:15 p.m. | 11 hours, 40 minutes ago
Description : Millenium MP3 Studio versions up to and including 2.0 is vulnerable to a stack-based buffer overflow when parsing .pls playlist files. The application fails to properly validate the length of the File1 field within the playlist, allowing an attacker to craft a malicious .pls file that overwrites the Structured Exception Handler (SEH) and executes arbitrary code. Exploitation requires the victim to open the file locally, though remote execution may be possible if the .pls extension is registered to the application and opened via a browser.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 21:15:00 GMT

read more

CVE-2025-55231 - Microsoft Windows Storage Race Condition Remote Code Execution

CVE ID : CVE-2025-55231
Published : Aug. 21, 2025, 8:15 p.m. | 11 hours, 50 minutes ago
Description : Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Storage allows an unauthorized attacker to execute code over a network.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-55230 - Microsoft Windows MBT Transport Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability

CVE ID : CVE-2025-55230
Published : Aug. 21, 2025, 8:15 p.m. | 10 hours, 40 minutes ago
Description : Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-55229 - Microsoft Windows Certificate Spoofing Vulnerability

CVE ID : CVE-2025-55229
Published : Aug. 21, 2025, 8:15 p.m. | 9 hours, 50 minutes ago
Description : Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-55106 - Esri Portal for ArcGIS Enterprise Sites Stored Cross-site Scripting Vulnerability

CVE ID : CVE-2025-55106
Published : Aug. 21, 2025, 8:15 p.m. | 6 hours, 39 minutes ago
Description : There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.9.1 – 11.4 that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in the victim’s browser. The privileges required to execute this attack are high. The attack could disclose a privileged token which may result in the attacker gaining full control of the Portal.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-55107 - Esri Portal for ArcGIS Enterprise Sites Cross-Site Scripting (XSS)

CVE ID : CVE-2025-55107
Published : Aug. 21, 2025, 8:15 p.m. | 6 hours, 39 minutes ago
Description : There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.9.1 – 11.4 that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in the victim’s browser. The privileges required to execute this attack are high. The attack could disclose a privileged token which may result in the attacker gaining full control of the Portal.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-55105 - Esri Portal for ArcGIS Enterprise Sites Stored Cross-site Scripting Vulnerability

CVE ID : CVE-2025-55105
Published : Aug. 21, 2025, 8:15 p.m. | 4 hours, 39 minutes ago
Description : There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.9.1 – 11.4 that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in the victim’s browser. The privileges required to execute this attack are high. The attack could disclose a privileged token which may result in the attacker gaining full control of the Portal.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-53795 - Microsoft PC Manager Privilege Escalation Vulnerability

CVE ID : CVE-2025-53795
Published : Aug. 21, 2025, 8:15 p.m. | 1 hour, 49 minutes ago
Description : Improper authorization in Microsoft PC Manager allows an unauthorized attacker to elevate privileges over a network.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-54460 - Apache Hadoop HDFS File Upload Vulnerability (Privilege Escalation)

CVE ID : CVE-2025-54460
Published : Aug. 21, 2025, 8:15 p.m. | 1 hour, 49 minutes ago
Description : The vulnerability, if exploited, could allow an authenticated miscreant (with privileges to create or access publication targets of type Text File or HDFS) to upload and persist files that could potentially be executed.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-55103 - Esri Portal for ArcGIS Enterprise Sites Stored XSS

CVE ID : CVE-2025-55103
Published : Aug. 21, 2025, 8:15 p.m. | 1 hour, 49 minutes ago
Description : There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 10.9.1 – 11.4 that may allow a remote, authenticated attacker to inject malicious a file with an embedded xss script which when loaded could potentially execute arbitrary JavaScript code in the victim’s browser. The privileges required to execute this attack are high. The attack could disclose a privileged token which may result in the attacker gaining full control of the Portal.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-55104 - ArcGIS HUB and ArcGIS Enterprise Sites Stored XSS

CVE ID : CVE-2025-55104
Published : Aug. 21, 2025, 8:15 p.m. | 1 hour, 49 minutes ago
Description : A stored cross-site scripting (XSS) vulnerability exists ArcGIS HUB and ArcGIS Enterprise Sites which allows an authenticated user with the ability to create or edit a site to add and store an XSS payload. If this stored XSS payload is triggered by any user attacker supplied JavaScript may execute in the victim's browser.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2010-10015 - AOL Phobos.dll Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-10015
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : AOL versions up to and including 9.5 includes an ActiveX control (Phobos.dll) that exposes a method called Import() via the Phobos.Playlist COM object. This method is vulnerable to a stack-based buffer overflow when provided with an excessively long string argument. Exploitation allows remote attackers to execute arbitrary code in the context of the user, but only when the malicious HTML file is opened locally, due to the control not being marked safe for scripting or initialization. AOL remains an active and supported brand offering services like AOL Mail and AOL Desktop Gold, but the legacy AOL 9.5 desktop software—specifically the version containing the vulnerable Phobos.dll ActiveX control—is long discontinued and no longer maintained.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2010-20109 - Barracuda Path Traversal Vulnerability

CVE ID : CVE-2010-20109
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : Barracuda products, confirmed in Spam & Virus Firewall, SSL VPN, and Web Application Firewall versions prior to October 2010, contain a path traversal vulnerability in the view_help.cgi endpoint. The locale parameter fails to properly sanitize user input, allowing attackers to inject traversal sequences and null-byte terminators to access arbitrary files on the underlying system. By exploiting this flaw, unauthenticated remote attackers can retrieve sensitive configuration files such as /mail/snapshot/config.snapshot, potentially exposing credentials, internal settings, and other critical data.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2010-20111 - Digital Music Pad Buffer Overflow Vulnerability

CVE ID : CVE-2010-20111
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : Digital Music Pad v8.2.3.3.4 contains a stack-based buffer overflow vulnerability in its playlist file parser. When opening a .pls file containing an excessively long string in the File1 field, the application fails to properly validate input length, resulting in corruption of the Structured Exception Handler (SEH) on the stack. This flaw may allow an attacker to control execution flow when the file is opened, potentially leading to arbitrary code execution.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2010-20112 - Amlib NetOpacs Webquery.dll Stack Buffer Overflow and Control Flow Vulnerability

CVE ID : CVE-2010-20112
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : Amlib’s NetOpacs webquery.dll contains a stack-based buffer overflow vulnerability triggered by improper handling of HTTP GET parameters. Specifically, the application fails to enforce bounds on input supplied to the app parameter, allowing excessive data to overwrite memory structures including the Structured Exception Handler (SEH). Additionally, malformed parameter names followed by an equals sign may result in unintended control flow behavior. This vulnerability is exposed through IIS and affects legacy Windows deployments
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2010-20119 - CommuniCrypt Mail Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20119
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : CommuniCrypt Mail versions up to and including 1.16 contains a stack-based buffer overflow vulnerability in its ANSMTP.dll and AOSMTP.dll ActiveX controls, specifically within the AddAttachments() method. This method fails to properly validate the length of input strings, allowing data to exceed the bounds of a fixed-size stack buffer. When invoked with an overly long string, the control can corrupt adjacent memory structures, including exception handlers, leading to potential control flow disruption.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2010-20121 - EasyFTP Server Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20121
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD (Change Working Directory) command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack. This flaw enables remote code execution without authentication, as EasyFTP allows anonymous access by default. The vulnerability was resolved in version 1.7.0.12, after which the product was renamed “UplusFtp.”
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-24489 - Apache File Upload Remote Code Execution

CVE ID : CVE-2025-24489
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : An attacker could exploit this vulnerability by uploading arbitrary files via a specific service, which could lead to system compromise.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-27714 - Apache File Upload Remote Code Execution Vulnerability

CVE ID : CVE-2025-27714
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : An attacker could exploit this vulnerability by uploading arbitrary files via the a specific endpoint, leading to unauthorized remote code execution or system compromise.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-27721 - INFINITT PACS Unauthenticated System Manager Access

CVE ID : CVE-2025-27721
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : Unauthorized users can access INFINITT PACS System Manager without proper authorization, which could lead to unauthorized access to system resources.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-3128 - Mitsubishi Electric smartRTU Remote Command Execution

CVE ID : CVE-2025-3128
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : A remote unauthenticated attacker who has bypassed authentication could execute arbitrary OS commands to disclose, tamper with, destroy or delete information in Mitsubishi Electric smartRTU, or cause a denial-of service condition on the product.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-41415 - Adobe Publication Target Information Disclosure

CVE ID : CVE-2025-41415
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : The vulnerability, if exploited, could allow an authenticated miscreant (with privileges to access publication targets) to retrieve sensitive information that could then be used to gain additional access to downstream resources.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-51989 - Evolution Consulting Kft. HRmaster HTML Injection Vulnerability

CVE ID : CVE-2025-51989
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : HTML injection vulnerability in the registration interface in Evolution Consulting Kft. HRmaster module v235 allows an attacker to inject HTML tags into the "keresztnév" (firstname) field, which will be sent out in an email resulting in possible Phishing scenarios against any, previously not registered, email address.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-53763 - Azure Databricks Privilege Escalation Vulnerability

CVE ID : CVE-2025-53763
Published : Aug. 21, 2025, 8:15 p.m. | 38 minutes ago
Description : Improper access control in Azure Databricks allows an unauthorized attacker to elevate privileges over a network.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 20:15:00 GMT

read more

CVE-2025-38742 - Dell iDRAC Service Module (iSM) Local Code Execution

CVE ID : CVE-2025-38742
Published : Aug. 21, 2025, 7:15 p.m. | 54 minutes ago
Description : Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains an Incorrect Permission Assignment for Critical Resource vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 19:15:00 GMT

read more

CVE-2025-38743 - Dell iDRAC Buffer Access with Incorrect Length Value Elevation of Privileges

CVE ID : CVE-2025-38743
Published : Aug. 21, 2025, 7:15 p.m. | 54 minutes ago
Description : Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges.
Severity: 7.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 19:15:00 GMT

read more

CVE-2025-57751 - Apache pyLoad Server-Side Request Forgery (SSRF) Vulnerability

CVE ID : CVE-2025-57751
Published : Aug. 21, 2025, 7:15 p.m. | 54 minutes ago
Description : pyLoad is the free and open-source Download Manager written in pure Python. The jk parameter is received in pyLoad CNL Blueprint. Due to the lack of jk parameter verification, the jk parameter input by the user is directly determined as dykpy.evaljs(), resulting in the server CPU being fully occupied and the web-ui becoming unresponsive. This vulnerability is fixed in 0.5.0b3.dev92.
Severity: 7.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 19:15:00 GMT

read more

CVE-2024-50641 - PandoraNext TokensTool Authentication Bypass

CVE ID : CVE-2024-50641
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without any token.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-43754 - Liferay Portal/Boundary Information Disclosure

CVE ID : CVE-2025-43754
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : Username enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allows attackers to determine if an account exist in the application by inspecting the server processing time of the login request.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-52351 - Aikaan IoT Management Platform Password Disclosure

CVE ID : CVE-2025-52351
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : Aikaan IoT management platform v3.25.0325-5-g2e9c59796 sends a newly generated password to users in plaintext via email and also includes the same password as a query parameter in the account activation URL (e.g., https://domain.com/activate=xyz). This practice can result in password exposure via browser history, proxy logs, referrer headers, and email caching. The vulnerability impacts user credential confidentiality during initial onboarding.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-52352 - Aikaan IoT Management Platform Sign-up API Authentication Bypass

CVE ID : CVE-2025-52352
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : Aikaan IoT management platform v3.25.0325-5-g2e9c59796 provides a configuration to disable user sign-up in distributed deployments by hiding the sign-up option on the login page UI. However, the sign-up API endpoint remains publicly accessible and functional, allowing unauthenticated users to register accounts via APIs even when the feature is disabled. This leads to authentication bypass and unauthorized access to admin portals, violating intended access controls.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-55523 - Agent-Zero Directory Traversal Vulnerability

CVE ID : CVE-2025-55523
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : An issue in the component /api/download_work_dir_file.py of Agent-Zero v0.8.* allows attackers to execute a directory traversal.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-55524 - Agent-Zero Privilege Escalation Vulnerability

CVE ID : CVE-2025-55524
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : Insecure permissions in Agent-Zero v0.8.* allow attackers to arbitrarily reset the system via unspecified vectors.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-57768 - Phproject Stored Cross-Site Scripting (XSS)

CVE ID : CVE-2025-57768
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : Phproject is a high performance full-featured project management system. From 1.8.0 to before 1.8.3, a Stored Cross-Site Scripting (XSS) vulnerability exists in the Planned Hours field when creating a new project. When sending a POST request to /issues/new/, the value provided in the Planned Hours field is included in the server response without any HTML encoding or sanitization. Because of this, an attacker can craft a malicious payload such as and include it in the planned_hours parameter. The server reflects the input directly in the HTML of the project creation page, causing the browser to interpret and execute it. This vulnerability is fixed in 1.8.3.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-7051 - N-central Syslog Configuration Privilege Escalation Vulnerability

CVE ID : CVE-2025-7051
Published : Aug. 21, 2025, 6:15 p.m. | 1 hour, 54 minutes ago
Description : On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2.
Severity: 8.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 18:15:00 GMT

read more

CVE-2025-55522 - Akaunting XSS Injection

CVE ID : CVE-2025-55522
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : Cross-site scripting (XSS) vulnerability in the component /common/reports of Akaunting v3.1.18 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the name parameter.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-57754 - Supabase URI Exposure in eslint-ban-moment

CVE ID : CVE-2025-57754
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : eslint-ban-moment is an Eslint plugin for final assignment in VIHU. In 3.0.0 and earlier, a sensitive Supabase URI is exposed in .env. A valid Supabase URI with embedded username and password will allow an attacker complete unauthorized access and control over database and user data. This could lead to data exfiltration, modification or deletion.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-57755 - Claude-code-router CORS Credential Exposure

CVE ID : CVE-2025-57755
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : claude-code-router is a powerful tool to route Claude Code requests to different models and customize any request. Due to improper Cross-Origin Resource Sharing (CORS) configuration, there is a risk that user API Keys or equivalent credentials may be exposed to untrusted domains. Attackers could exploit this misconfiguration to steal credentials, abuse accounts, exhaust quotas, or access sensitive data. The issue has been patched in v1.0.34.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-57761 - WeGIA Web Manager SQL Injection Vulnerability

CVE ID : CVE-2025-57761
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : WeGIA is a Web manager for charitable institutions. Prior to 3.4.10, there is a SQL Injection vulnerability in the /html/funcionario/dependente_remover.php endpoint, specifically in the id_funcionario parameter. This vulnerability allows attackers to execute arbitrary SQL commands, compromising the confidentiality, integrity, and availability of the database. This vulnerability is fixed in 3.4.10.
Severity: 9.4 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-57762 - WeGIA Web Manager Stored Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-57762
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, there is a Stored Cross-Site Scripting (XSS) vulnerability in the dependente_docdependente.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the nome parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. This vulnerability is fixed in 3.4.7.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-57763 - WeGIA Web Manager Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-57763
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, there is a Reflected Cross-Site Scripting (XSS) vulnerability in the insere_despacho.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the cpf sccs. This vulnerability is fixed in 3.4.7.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-57764 - WeGIA Web Manager Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-57764
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, a Reflected Cross-Site Scripting (XSS) vulnerability was identified in the cargos.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the msg_e parameter. This vulnerability is fixed in 3.4.7.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-57765 - WeGIA Web Manager Reflected Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-57765
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : WeGIA is a Web manager for charitable institutions. Prior to 3.4.7, a Reflected Cross-Site Scripting (XSS) vulnerability was identified in the pre_cadastro_adotante.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the msg_e parameter. This vulnerability is fixed in 3.4.7.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-6465 - Mattermost File Upload Path Traversal Vulnerability

CVE ID : CVE-2025-6465
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 10.10.x <= 10.10.0, 10.9.x <= 10.9.3 fail to sanitize file names which allows users with file upload permission to overwrite file attachment thumbnails via path traversal in file streaming APIs.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-7969 - Markdown-it XSS Vulnerability

CVE ID : CVE-2025-7969
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in markdown-it allows Cross-Site Scripting (XSS). This vulnerability is associated with program files lib/renderer.mjs. This issue affects markdown-it: 14.1.0.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-8402 - Mattermost Server Denial of Service Vulnerability

CVE ID : CVE-2025-8402
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.10.x <= 10.10.0, 10.9.x <= 10.9.3 fail to validate import data which allows a system admin to crash the server via the bulk import feature.
Severity: 4.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-9309 - Tenda MD5 Hash Handler Local Hard-Coded Credentials Vulnerability

CVE ID : CVE-2025-9309
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : A vulnerability was found in Tenda AC10 16.03.10.13. Affected is an unknown function of the file /etc_ro/shadow of the component MD5 Hash Handler. Performing manipulation results in hard-coded credentials. The attack needs to be approached locally. A high degree of complexity is needed for the attack. The exploitability is told to be difficult. The exploit has been made public and could be used.
Severity: 2.5 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-9310 - YeQuifu CarRental Druid Hard-Coded Credentials Remote Vulnerability

CVE ID : CVE-2025-9310
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : A vulnerability was determined in yeqifu carRental up to 3fabb7eae93d209426638863980301d6f99866b3. Affected by this vulnerability is an unknown functionality of the file /carRental_war/druid/login.html of the component Druid. Executing manipulation can lead to hard-coded credentials. The attack may be launched remotely. The exploit has been publicly disclosed and may be utilized. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-9311 - iSourcecode Apartment Management System SQL Injection

CVE ID : CVE-2025-9311
Published : Aug. 21, 2025, 5:15 p.m. | 2 hours, 54 minutes ago
Description : A vulnerability was identified in itsourcecode Apartment Management System 1.0. Affected by this issue is some unknown functionality of the file /fair/addfair.php. The manipulation of the argument ID leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2024-45438 - SpamTitan Email Security Gateway Unauthenticated Account Creation Vulnerability

CVE ID : CVE-2024-45438
Published : Aug. 21, 2025, 5:15 p.m. | 54 minutes ago
Description : An issue was discovered in TitanHQ SpamTitan Email Security Gateway 8.00.x before 8.00.101 and 8.01.x before 8.01.14. The file quarantine.php within the SpamTitan interface allows unauthenticated users to trigger account-level actions using a crafted GET request. Notably, when a non-existent email address is provided as part of the email parameter, SpamTitan will automatically create a user record and associate quarantine settings with it - all without requiring authentication.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-43755 - Liferay Portal Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-43755
Published : Aug. 21, 2025, 5:15 p.m. | 54 minutes ago
Description : A Stored cross-site scripting vulnerability in the Liferay Portal 7.4.0 t through 7.4.3.132, and Liferay DXP 2025.Q2.0, 2025.Q1.0 through 2025.Q1.13, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.17 and 7.4 GA through update 92 allows an remote authenticated attacker to inject JavaScript into the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_type parameter.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-43756 - Liferay Portal Liferay DXP Reflected Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-43756
Published : Aug. 21, 2025, 5:15 p.m. | 54 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.15, 2025.Q2.0 through 2025.Q2.2 and 2024.Q1.13 through 2024.Q1.19 allows a remote authenticated user to inject JavaScript code via snippet parameter.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-55521 - Akaunting Settings Localisation Denial of Service (DoS)

CVE ID : CVE-2025-55521
Published : Aug. 21, 2025, 5:15 p.m. | 54 minutes ago
Description : An issue in the component /settings/localisation of Akaunting v3.1.18 allows authenticated attackers to cause a Denial of Service (DoS) via a crafted POST request.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 17:15:00 GMT

read more

CVE-2025-55743 - UnoPim Laravel File Upload Validation Bypass

CVE ID : CVE-2025-55743
Published : Aug. 21, 2025, 4:15 p.m. | 1 hour, 54 minutes ago
Description : UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. Before 0.2.1, the image upload at the user creation feature performs only client side file type validation. A user can capture the request by uploading an image, capture the request through a Proxy like Burp suite. Make changes to the file extension and content. The vulnerability is fixed in 0.2.1.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 16:15:00 GMT

read more

CVE-2025-55744 - UnoPim Laravel CSRF Vulnerability

CVE ID : CVE-2025-55744
Published : Aug. 21, 2025, 4:15 p.m. | 1 hour, 54 minutes ago
Description : UnoPim is an open-source Product Information Management (PIM) system built on the Laravel framework. Before 0.2.1, some of the endpoints of the application is vulnerable to Cross site Request forgery (CSRF). This vulnerability is fixed in 0.2.1.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 16:15:00 GMT

read more

CVE-2025-57753 - Vite-Plugin-Static-Copy Unauthorized File Access Vulnerability

CVE ID : CVE-2025-57753
Published : Aug. 21, 2025, 4:15 p.m. | 1 hour, 54 minutes ago
Description : vite-plugin-static-copy is rollup-plugin-copy for Vite with dev server support. Files not included in src are accessible with a crafted request. The vulnerability is fixed in 2.3.2 and 3.1.2.
Severity: 6.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 16:15:00 GMT

read more

CVE-2025-9162 - Keycloak KeycloakRealmImport Environment Variable Injection Vulnerability

CVE ID : CVE-2025-9162
Published : Aug. 21, 2025, 4:15 p.m. | 1 hour, 54 minutes ago
Description : A flaw was found in org.keycloak/keycloak-model-storage-service. The KeycloakRealmImport custom resource substitutes placeholders within imported realm documents, potentially referencing environment variables. This substitution process allows for injection attacks when crafted realm documents are processed. An attacker can leverage this to inject malicious content during the realm import procedure. This can lead to unintended consequences within the Keycloak environment.
Severity: 4.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 16:15:00 GMT

read more

CVE-2025-9306 - SourceCodester Advanced School Management System Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9306
Published : Aug. 21, 2025, 4:15 p.m. | 1 hour, 54 minutes ago
Description : A vulnerability was detected in SourceCodester Advanced School Management System 1.0. The impacted element is an unknown function of the file /index.php/notice/addNotice. The manipulation of the argument noticeSubject results in cross site scripting. It is possible to launch the attack remotely. The exploit is now public and may be used.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 16:15:00 GMT

read more

CVE-2025-9307 - PHPGurukul Online Course Registration SQL Injection Vulnerability

CVE ID : CVE-2025-9307
Published : Aug. 21, 2025, 4:15 p.m. | 1 hour, 54 minutes ago
Description : A flaw has been found in PHPGurukul Online Course Registration 3.1. This affects an unknown function of the file /admin/session.php. This manipulation of the argument sesssion causes sql injection. The attack can be initiated remotely. The exploit has been published and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 16:15:00 GMT

read more

CVE-2025-9308 - Yarn SetOptions Regular Expression Inefficient Complexity Vulnerability

CVE ID : CVE-2025-9308
Published : Aug. 21, 2025, 4:15 p.m. | 1 hour, 54 minutes ago
Description : A vulnerability has been found in yarnpkg Yarn up to 1.22.22. This impacts the function setOptions of the file src/util/request-manager.js. Such manipulation leads to inefficient regular expression complexity. Local access is required to approach this attack. This vulnerability only affects products that are no longer supported by the maintainer.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 16:15:00 GMT

read more

CVE-2025-48956 - Apache vLLM HTTP Header DoS Vulnerability

CVE ID : CVE-2025-48956
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : vLLM is an inference and serving engine for large language models (LLMs). From 0.1.0 to before 0.10.1.1, a Denial of Service (DoS) vulnerability can be triggered by sending a single HTTP GET request with an extremely large header to an HTTP endpoint. This results in server memory exhaustion, potentially leading to a crash or unresponsiveness. The attack does not require authentication, making it exploitable by any remote user. This vulnerability is fixed in 0.10.1.1.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-50860 - Easy Hosting Control Panel SQL Injection

CVE ID : CVE-2025-50860
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : SQL Injection in the listdomains function in Easy Hosting Control Panel (EHCP) 20.04.1.b allows authenticated attackers to access or manipulate database contents via the arananalan POST parameter.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-52194 - Libsndfile IRCAM Audio File Buffer Overflow Vulnerability

CVE ID : CVE-2025-52194
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-53251 - An-Themes Pin WP RCE File Upload Vulnerability

CVE ID : CVE-2025-53251
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : Unrestricted Upload of File with Dangerous Type vulnerability in An-Themes Pin WP allows Upload a Web Shell to a Web Server.This issue affects Pin WP: from n/a through 6.9.
Severity: 9.9 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-55297 - Espressif ESP-IDF BluFi Wi-Fi Credential Handling and Diffie-Hellman Key Exchange Memory Overflow Vulnerability

CVE ID : CVE-2025-55297
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. The BluFi example bundled in ESP-IDF was vulnerable to memory overflows in two areas: Wi-Fi credential handling and Diffie–Hellman key exchange. This vulnerability is fixed in 5.4.1, 5.3.3, 5.1.6, and 5.0.9.
Severity: 5.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-55371 - jshERP Insecure Direct Object Reference (IDOR)

CVE ID : CVE-2025-55371
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : Incorrect access control in the component /controller/PersonController.java of jshERP v3.5 allows unauthorized attackers to obtain all the information of the handler by executing the getAllList method.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-55383 - Moss File Upload Vulnerability

CVE ID : CVE-2025-55383
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : Moss before v0.15 has a file upload vulnerability. The "upload" function configuration allows attackers to upload files of any extension to any location on the target server.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-9303 - TOTOLINK A720R Buffer Overflow in setParentalRules

CVE ID : CVE-2025-9303
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : A security flaw has been discovered in TOTOLINK A720R 4.1.5cu.630_B20250509. This issue affects the function setParentalRules of the file /cgi-bin/cstecgi.cgi. Performing manipulation of the argument desc results in buffer overflow. The attack is possible to be carried out remotely. The exploit has been released to the public and may be exploited.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-9304 - SourceCodester Online Bank Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9304
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : A weakness has been identified in SourceCodester Online Bank Management System 1.0. Impacted is an unknown function of the file /bank/show.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from a remote location. The exploit has been made available to the public and could be exploited.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-9305 - SourceCodester Online Bank Management System SQL Injection

CVE ID : CVE-2025-9305
Published : Aug. 21, 2025, 3:15 p.m. | 53 minutes ago
Description : A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0. The affected element is an unknown function of the file /bank/mnotice.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 15:15:00 GMT

read more

CVE-2025-34158 - Plex Media Server Remote Code Execution Vulnerability

CVE ID : CVE-2025-34158
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : Plex Media Server (PMS) versions 1.41.7.x through 1.42.0.x are affected by an unspecified security vulnerability reported via Plex’s bug bounty program. While technical details have not been publicly disclosed, the issue was acknowledged by the vendor and resolved in version 1.42.1. The vulnerability may have posed a risk to system integrity, confidentiality, or availability, prompting a strong recommendation for all users to upgrade immediately.
Severity: 10.0 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-51818 - MCCMS PHP Code Injection

CVE ID : CVE-2025-51818
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : MCCMS 2.7.0 is vulnerable to Arbitrary file deletion in the Backups.php component. This allows an attacker to execute arbitrary commands
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-55366 - jshERP Unauthenticated User Password Reset and Privilege Escalation

CVE ID : CVE-2025-55366
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : Incorrect access control in the component \controller\UserController.java of jshERP v3.5 allows attackers to arbitrarily reset user account passwords and execute a horizontal privilege escalation attack.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-55367 - jshERP Arbitrary Supplier Status Modification Vulnerability

CVE ID : CVE-2025-55367
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : Incorrect access control in the component \controller\SupplierController.java of jshERP v3.5 allows unauthorized attackers to arbitrarily modify the supplier status under any account.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-55368 - jshERP Unauthenticated Supplier Status Modification Vulnerability

CVE ID : CVE-2025-55368
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : Incorrect access control in the component \controller\RoleController.java of jshERP v3.5 allows unauthorized attackers to arbitrarily modify the supplier status under any account.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-55370 - jshERP SQL Injection

CVE ID : CVE-2025-55370
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : Incorrect access control in the component \controller\ResourceController.java of jshERP v3.5 allows unauthorized attackers to obtain all the corresponding ID data by modifying the ID value.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-55564 - Tenda AC15 Denial of Service (DoS) Stack Overflow

CVE ID : CVE-2025-55564
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : Tenda AC15 v15.03.05.19_multi_TD01 has a stack overflow via the list parameter in the fromSetIpMacBind function.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-9301 - "CMake Local Assertion Vulnerability"

CVE ID : CVE-2025-9301
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : A vulnerability was determined in cmake 4.1.20250725-gb5cce23. This affects the function cmForEachFunctionBlocker::ReplayItems of the file cmForEachCommand.cxx. This manipulation causes reachable assertion. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. Patch name: 37e27f71bc356d880c908040cd0cb68fa2c371b8. It is suggested to install a patch to address this issue.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-9302 - PHPGurukul User Management System SQL Injection

CVE ID : CVE-2025-9302
Published : Aug. 21, 2025, 2:15 p.m. | 1 hour, 52 minutes ago
Description : A vulnerability was identified in PHPGurukul User Management System 1.0. This vulnerability affects unknown code of the file /signup.php. Such manipulation of the argument emailid leads to sql injection. The attack can be executed remotely. The exploit is publicly available and might be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 14:15:00 GMT

read more

CVE-2025-47184 - Exagid EX10 XXE Injection Vulnerability

CVE ID : CVE-2025-47184
Published : Aug. 21, 2025, 1:15 p.m. | 2 hours, 53 minutes ago
Description : An XML external entities (XXE) injection vulnerability in the /init API endpoint in Exagid EX10 7.0.1p02 allows an authenticated, unprivileged attacker to achieve information disclosure and privilege escalation via a crafted ISys XML message.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 13:15:00 GMT

read more

CVE-2025-9297 - Tenda i22 Remote Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9297
Published : Aug. 21, 2025, 1:15 p.m. | 2 hours, 53 minutes ago
Description : A vulnerability was detected in Tenda i22 1.0.0.3(4687). This impacts the function formWeixinAuthInfoGet of the file /goform/wxportalauth. Performing manipulation of the argument Type results in stack-based buffer overflow. The attack can be initiated remotely. The exploit is now public and may be used.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 13:15:00 GMT

read more

CVE-2025-9298 - Tenda M3 Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9298
Published : Aug. 21, 2025, 1:15 p.m. | 2 hours, 53 minutes ago
Description : A flaw has been found in Tenda M3 1.0.0.12. Affected is the function formQuickIndex of the file /goform/QuickIndex. Executing manipulation of the argument PPPOEPassword can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 13:15:00 GMT

read more

CVE-2025-9299 - Tenda M3 Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9299
Published : Aug. 21, 2025, 1:15 p.m. | 2 hours, 53 minutes ago
Description : A vulnerability has been found in Tenda M3 1.0.0.12. Affected by this vulnerability is the function formGetMasterPassengerAnalyseData of the file /goform/getMasterPassengerAnalyseData. The manipulation of the argument Time leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 13:15:00 GMT

read more

CVE-2025-9300 - Saitoha Libsixel Local Stack-Based Buffer Overflow

CVE ID : CVE-2025-9300
Published : Aug. 21, 2025, 1:15 p.m. | 2 hours, 53 minutes ago
Description : A vulnerability was found in saitoha libsixel up to 1.10.3. Affected by this issue is the function sixel_debug_print_palette of the file src/encoder.c of the component img2sixel. The manipulation results in stack-based buffer overflow. The attack must be initiated from a local position. The exploit has been made public and could be used. The patch is identified as 316c086e79d66b62c0c4bc66229ee894e4fdb7d1. Applying a patch is advised to resolve this issue.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 13:15:00 GMT

read more

CVE-2025-9296 - Emlog Pro Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9296
Published : Aug. 21, 2025, 12:15 p.m. | 3 hours, 53 minutes ago
Description : A security vulnerability has been detected in Emlog Pro up to 2.5.18. This affects an unknown function of the file /admin/blogger.php?action=update_avatar. Such manipulation of the argument image leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 12:15:00 GMT

read more

CVE-2025-8064 - WordPress Bible SuperSearch Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-8064
Published : Aug. 21, 2025, 10:15 a.m. | 3 hours, 53 minutes ago
Description : The Bible SuperSearch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘selector_height’ parameter in all versions up to, and including, 6.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 10:15:00 GMT

read more

CVE-2025-47700 - Mattermost Server Open Redirect

CVE ID : CVE-2025-47700
Published : Aug. 21, 2025, 8:15 a.m. | 5 hours, 53 minutes ago
Description : Mattermost Server versions 10.5.x <= 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions
Severity: 3.5 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 08:15:00 GMT

read more

CVE-2025-47870 - Mattermost Team Invite ID Disclosure

CVE ID : CVE-2025-47870
Published : Aug. 21, 2025, 8:15 a.m. | 5 hours, 53 minutes ago
Description : Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.9.x <= 10.9.2 fail to sanitize the team invite ID in the POST /api/v4/teams/:teamId/restore endpoint which allows an team admin with no member invite privileges to get the team’s invite id.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 08:15:00 GMT

read more

CVE-2025-49222 - Mattermost File Type Validation Bypass

CVE ID : CVE-2025-49222
Published : Aug. 21, 2025, 8:15 a.m. | 5 hours, 53 minutes ago
Description : Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.9.x <= 10.9.2, 10.10.x <= 10.10.0 fail to validate upload types in remote cluster upload sessions which allows a system admin to upload non-attachment file types via shared channels that could potentially be placed in arbitrary filesystem directories.
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 08:15:00 GMT

read more

CVE-2025-49810 - Mattermost Information Disclosure

CVE ID : CVE-2025-49810
Published : Aug. 21, 2025, 8:15 a.m. | 5 hours, 53 minutes ago
Description : Mattermost versions 10.5.x <= 10.5.8 fail to validate access controls at time of access which allows user to read a thread via AI posts
Severity: 3.5 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 08:15:00 GMT

read more

CVE-2025-53971 - Mattermost Authorization Bypass Vulnerability

CVE ID : CVE-2025-53971
Published : Aug. 21, 2025, 8:15 a.m. | 5 hours, 53 minutes ago
Description : Mattermost versions 10.5.x <= 10.5.8, 9.11.x <= 9.11.17 fail to properly validate authorization for team scheme role modifications which allows Team Admins to demote Team Members to Guests via the PUT /api/v4/teams/team-id/members/user-id/schemeRoles API endpoint.
Severity: 3.8 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 08:15:00 GMT

read more

CVE-2025-8023 - Mattermost Path Traversal Vulnerability

CVE ID : CVE-2025-8023
Published : Aug. 21, 2025, 8:15 a.m. | 5 hours, 53 minutes ago
Description : Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.9.x <= 10.9.2 fails to sanitize path traversal sequences in template file destination paths, which allows a system admin to perform path traversal attacks via malicious path components, potentially enabling malicious file placement outside intended directories.
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 08:15:00 GMT

read more

CVE-2025-8895 - WordPress Webhooks Plugin Unauthenticated Arbitrary File Copy Vulnerability

CVE ID : CVE-2025-8895
Published : Aug. 21, 2025, 8:15 a.m. | 5 hours, 53 minutes ago
Description : The WP Webhooks plugin for WordPress is vulnerable to arbitrary file copy due to missing validation of user-supplied input in all versions up to, and including, 3.3.5. This makes it possible for unauthenticated attackers to copy arbitrary files on the affected site's server to arbitrary locations. This can be used to copy the contents of wp-config.php into a text file which can then be accessed in a browser to reveal database credentials.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 08:15:00 GMT

read more

CVE-2025-36530 - Mattermost Plugin Path Traversal Vulnerability

CVE ID : CVE-2025-36530
Published : Aug. 21, 2025, 7:15 a.m. | 6 hours, 53 minutes ago
Description : Mattermost versions 10.9.x <= 10.9.1, 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17 fail to properly validate file paths during plugin import operations which allows restricted admin users to install unauthorized custom plugins via path traversal in the import functionality, bypassing plugin signature enforcement and marketplace restrictions.
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 07:15:00 GMT

read more

CVE-2025-7221 - GiveWP – Donation Plugin and Fundraising Platform Unauthenticated Payment Status Modification Vulnerability

CVE ID : CVE-2025-7221
Published : Aug. 21, 2025, 6:15 a.m. | 7 hours, 53 minutes ago
Description : The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the give_update_payment_status() function in all versions up to, and including, 4.5.0. This makes it possible for authenticated attackers, with GiveWP Worker-level access and above, to update donations statuses. This ability is not present in the user interface.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 06:15:00 GMT

read more

CVE-2025-7390 - "OPC.HTTPS Client Certificate Trust Bypass"

CVE ID : CVE-2025-7390
Published : Aug. 21, 2025, 6:15 a.m. | 7 hours, 53 minutes ago
Description : A malicious client can bypass the client certificate trust check of an opc.https server when the server endpoint is configured to allow only secure communication.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 06:15:00 GMT

read more

CVE-2025-8592 - WordPress Inspiro CSRF Plugin Installation

CVE ID : CVE-2025-8592
Published : Aug. 21, 2025, 6:15 a.m. | 7 hours, 53 minutes ago
Description : The Inspiro theme for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.2. This is due to missing or incorrect nonce validation on the inspiro_install_plugin() function. This makes it possible for unauthenticated attackers to install plugins from the repository via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 06:15:00 GMT

read more

CVE-2025-8607 - FunnelKit SlingBlocks Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-8607
Published : Aug. 21, 2025, 6:15 a.m. | 7 hours, 53 minutes ago
Description : The SlingBlocks – Gutenberg Blocks by FunnelKit (Formerly WooFunnels) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown block's attributes in all versions up to, and including, 1.6.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 06:15:00 GMT

read more

CVE-2025-53504 - Group-Office Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-53504
Published : Aug. 21, 2025, 5:15 a.m. | 8 hours, 53 minutes ago
Description : Group-Office versions prior to 6.8.119 and prior to 25.0.20 provided by Intermesh BV contain a cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed in the user's web browser.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 05:15:00 GMT

read more

CVE-2025-53505 - Group-Office Path Traversal Vulnerability

CVE ID : CVE-2025-53505
Published : Aug. 21, 2025, 5:15 a.m. | 8 hours, 53 minutes ago
Description : Group-Office versions prior to 6.8.119 and prior to 25.0.20 provided by Intermesh BV contain a path traversal vulnerability. If this vulnerability is exploited, information on the server hosting the product may be exposed.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 05:15:00 GMT

read more

CVE-2025-57829 - Apache HTTP Server Command Injection

CVE ID : CVE-2025-57829
Published : Aug. 21, 2025, 4:16 a.m. | 9 hours, 52 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:16:00 GMT

read more

CVE-2025-57830 - Apache HTTP Server Authentication Bypass

CVE ID : CVE-2025-57830
Published : Aug. 21, 2025, 4:16 a.m. | 9 hours, 52 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:16:00 GMT

read more

CVE-2025-57831 - Apache HTTP Server Unknown Method Response

CVE ID : CVE-2025-57831
Published : Aug. 21, 2025, 4:16 a.m. | 9 hours, 52 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:16:00 GMT

read more

CVE-2025-57832 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-57832
Published : Aug. 21, 2025, 4:16 a.m. | 9 hours, 52 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:16:00 GMT

read more

CVE-2025-57824 - "Apache Struts Deserialization Vulnerability"

CVE ID : CVE-2025-57824
Published : Aug. 21, 2025, 4:15 a.m. | 9 hours, 11 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:15:00 GMT

read more

CVE-2025-57825 - Cisco WebEx Meeting Center Cross-Site Request Forgery

CVE ID : CVE-2025-57825
Published : Aug. 21, 2025, 4:15 a.m. | 9 hours, 11 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:15:00 GMT

read more

CVE-2025-57826 - Apache HTTP Server Cross-Site Request Forgery

CVE ID : CVE-2025-57826
Published : Aug. 21, 2025, 4:15 a.m. | 9 hours, 11 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:15:00 GMT

read more

CVE-2025-57827 - Apache HTTP Server Authentication Bypass

CVE ID : CVE-2025-57827
Published : Aug. 21, 2025, 4:15 a.m. | 9 hours, 11 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:15:00 GMT

read more

CVE-2025-57828 - Apache HTTP Server Unsecured Configuration

CVE ID : CVE-2025-57828
Published : Aug. 21, 2025, 4:15 a.m. | 9 hours, 11 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:15:00 GMT

read more

CVE-2025-48355 - ProveSource Social Proof Information Exposure Vulnerability

CVE ID : CVE-2025-48355
Published : Aug. 21, 2025, 4:15 a.m. | 7 hours, 11 minutes ago
Description : Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in ProveSource LTD ProveSource Social Proof allows Retrieve Embedded Sensitive Data.This issue affects ProveSource Social Proof: from n/a through 3.0.5.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 04:15:00 GMT

read more

CVE-2025-48978 - Ubiquiti Networks EdgeMAX EdgeSwitch Command Injection Vulnerability

CVE ID : CVE-2025-48978
Published : Aug. 21, 2025, 1:15 a.m. | 8 hours, 11 minutes ago
Description : An Improper Input Validation in EdgeMAX EdgeSwitch (Version 1.11.0 and earlier) could allow a Command Injection by a malicious actor with access to EdgeSwitch adjacent network. Affected Products: EdgeMAX EdgeSwitch (Version 1.11.0 and earlier) Mitigation: Update the EdgeMAX EdgeSwitch to Version 1.11.1 or later.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-24285 - "UniFi Connect EV Station Lite Command Injection Vulnerability"

CVE ID : CVE-2025-24285
Published : Aug. 21, 2025, 1:15 a.m. | 5 hours, 36 minutes ago
Description : Multiple Improper Input Validation vulnerabilities in UniFi Connect EV Station Lite may allow a Command Injection by a malicious actor with network access to the UniFi Connect EV Station Lite. Affected Products: UniFi Connect EV Station Lite (Version 1.5.1 and earlier) Mitigation: Update UniFi Connect EV Station Lite to Version 1.5.2 or later
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-27213 - Ubiquiti UniFi Connect Improper Access Control Vulnerability

CVE ID : CVE-2025-27213
Published : Aug. 21, 2025, 1:15 a.m. | 5 hours, 35 minutes ago
Description : An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect devices to enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Pro (Version 1.5.18 and earlier) UniFi Connect Display (Version 1.9.324 and earlier) UniFi Connect Display Cast (Version 1.9.301 and earlier) UniFi Connect Display Cast Pro (Version 1.0.78 and earlier) UniFi Connect Display Cast Lite (Version 1.0.3 and earlier) Mitigation: Update UniFi Connect EV Station Pro to Version 1.5.27 or later Update UniFi Connect Display to Version 1.13.6 or later Update UniFi Connect Display Cast to Version 1.10.3 or later Update UniFi Connect Display Cast Pro to Version 1.0.83 or later Update UniFi Connect Display Cast Lite to Version 1.1.3 or later
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-27214 - "UniFi Connect EV Station Pro Authentication Bypass"

CVE ID : CVE-2025-27214
Published : Aug. 21, 2025, 1:15 a.m. | 5 hours, 35 minutes ago
Description : A Missing Authentication for Critical Function vulnerability in the UniFi Connect EV Station Pro may allow a malicious actor with physical or adjacent access to perform an unauthorized factory reset. Affected Products: UniFi Connect EV Station Pro (Version 1.5.18 and earlier) Mitigation: Update UniFi Connect EV Station Pro to Version 1.5.27 or later
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-27215 - Ubiquiti UniFi Connect Display Cast Insufficient Authentication Access Control Vulnerability

CVE ID : CVE-2025-27215
Published : Aug. 21, 2025, 1:15 a.m. | 5 hours, 35 minutes ago
Description : An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast (Version 1.10.3 and earlier) UniFi Connect Display Cast Pro (Version 1.0.89 and earlier) UniFi Connect Display Cast Lite (Version 1.0.3 and earlier) Mitigation: Update UniFi Connect Display Cast to Version 1.10.7 or later Update UniFi Connect Display Cast Pro to Version 1.0.94 or later Update UniFi Connect Display Cast Lite to Version 1.1.8 or later
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-27216 - "UISP Privilege Escalation Vulnerability"

CVE ID : CVE-2025-27216
Published : Aug. 21, 2025, 1:15 a.m. | 5 hours, 35 minutes ago
Description : Multiple Incorrect Permission Assignment for Critical Resource in UISP Application may allow a malicious actor with certain permissions to escalate privileges.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-27217 - "UISP Server-Side Request Forgery Vulnerability"

CVE ID : CVE-2025-27217
Published : Aug. 21, 2025, 1:15 a.m. | 5 hours, 35 minutes ago
Description : A Server-Side Request Forgery (SSRF) in the UISP Application may allow a malicious actor with certain permissions to make requests outside of UISP Application scope.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-43300 - Apple macOS and iPadOS Out-of-Bounds Write Vulnerability

CVE ID : CVE-2025-43300
Published : Aug. 21, 2025, 1:15 a.m. | 5 hours, 35 minutes ago
Description : An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sonoma 14.7.8, macOS Ventura 13.7.8, iPadOS 17.7.10, macOS Sequoia 15.6.1, iOS 18.6.2 and iPadOS 18.6.2. Processing a malicious image file may result in memory corruption. Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 01:15:00 GMT

read more

CVE-2025-9264 - Xuxueli XXL-Job ID Resource Manipulation Remote Code Execution Vulnerability

CVE ID : CVE-2025-9264
Published : Aug. 21, 2025, 12:15 a.m. | 6 hours, 36 minutes ago
Description : A vulnerability was found in Xuxueli xxl-job up to 3.1.1. Affected by this issue is the function remove of the file /src/main/java/com/xxl/job/admin/controller/JobInfoController.java of the component Jobs Handler. Performing manipulation of the argument ID results in improper control of resource identifiers. Remote exploitation of the attack is possible. The exploit has been made public and could be used.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Thu, 21 Aug 2025 00:15:00 GMT

read more

CVE-2025-9253 - Linksys Router Stack-Based Buffer Overflow

CVE ID : CVE-2025-9253
Published : Aug. 20, 2025, 11:15 p.m. | 6 hours, 44 minutes ago
Description : A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this issue is the function RP_doSpecifySiteSurvey of the file /goform/RP_doSpecifySiteSurvey. The manipulation of the argument ssidhex leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 23:15:00 GMT

read more

CVE-2025-9262 - "Wong2 mcp-cli OAuth Handler Remote OS Command Injection Vulnerability"

CVE ID : CVE-2025-9262
Published : Aug. 20, 2025, 11:15 p.m. | 6 hours, 44 minutes ago
Description : A flaw has been found in wong2 mcp-cli 1.13.0. Affected is the function redirectToAuthorization of the file /src/oauth/provider.js of the component oAuth Handler. This manipulation causes os command injection. The attack may be initiated remotely. The attack is considered to have high complexity. The exploitability is told to be difficult. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 23:15:00 GMT

read more

CVE-2025-9263 - Xuxueli XXL-Job Remote Resource Identifier Manipulation Vulnerability

CVE ID : CVE-2025-9263
Published : Aug. 20, 2025, 11:15 p.m. | 6 hours, 44 minutes ago
Description : A vulnerability has been found in Xuxueli xxl-job up to 3.1.1. Affected by this vulnerability is the function getJobsByGroup of the file /src/main/java/com/xxl/job/admin/controller/JobLogController.java. Such manipulation of the argument jobGroup leads to improper control of resource identifiers. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 23:15:00 GMT

read more

CVE-2025-9288 - Sha.js Input Validation Vulnerability

CVE ID : CVE-2025-9288
Published : Aug. 20, 2025, 10:15 p.m. | 7 hours, 44 minutes ago
Description : Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 22:15:00 GMT

read more

CVE-2025-9252 - Linksys RE6000 Series Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9252
Published : Aug. 20, 2025, 10:15 p.m. | 6 hours, 35 minutes ago
Description : A weakness has been identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected by this vulnerability is the function DisablePasswordAlertRedirect of the file /goform/DisablePasswordAlertRedirect. Executing manipulation of the argument hint can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 22:15:00 GMT

read more

CVE-2025-9287 - Cipher-Base Cryptographic Input Data Manipulation Vulnerability

CVE ID : CVE-2025-9287
Published : Aug. 20, 2025, 10:15 p.m. | 6 hours, 35 minutes ago
Description : Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 22:15:00 GMT

read more

CVE-2025-57749 - n8n Symlink Traversal Vulnerability

CVE ID : CVE-2025-57749
Published : Aug. 20, 2025, 10:15 p.m. | 5 hours, 44 minutes ago
Description : n8n is a workflow automation platform. Before 1.106.0, a symlink traversal vulnerability was discovered in the Read/Write File node in n8n. While the node attempts to restrict access to sensitive directories and files, it does not properly account for symbolic links (symlinks). An attacker with the ability to create symlinks—such as by using the Execute Command node—could exploit this to bypass the intended directory restrictions and read from or write to otherwise inaccessible paths. Users of n8n.cloud are not impacted. Affected users should update to version 1.106.0 or later.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 22:15:00 GMT

read more

CVE-2025-9250 - Linksys RE Series Stack-Based Buffer Overflow

CVE ID : CVE-2025-9250
Published : Aug. 20, 2025, 10:15 p.m. | 5 hours, 44 minutes ago
Description : A vulnerability was identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This impacts the function setPWDbyBBS of the file /goform/setPWDbyBBS. Such manipulation of the argument hint leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 22:15:00 GMT

read more

CVE-2025-9251 - Linksys Router Sta WPS Pin Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9251
Published : Aug. 20, 2025, 10:15 p.m. | 5 hours, 44 minutes ago
Description : A security flaw has been discovered in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Affected is the function sta_wps_pin of the file /goform/sta_wps_pin. Performing manipulation of the argument Ssid results in stack-based buffer overflow. The attack can be initiated remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 22:15:00 GMT

read more

CVE-2024-57155 - Radar Authentication Bypass Vulnerability

CVE ID : CVE-2024-57155
Published : Aug. 20, 2025, 9:15 p.m. | 6 hours, 44 minutes ago
Description : Incorrect access control in radar v1.0.8 allows attackers to bypass authentication and access sensitive APIs without a token.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 21:15:00 GMT

read more

CVE-2025-9247 - Linksys Router Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9247
Published : Aug. 20, 2025, 9:15 p.m. | 6 hours, 44 minutes ago
Description : A vulnerability has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. The affected element is the function setVlan of the file /goform/setVlan. The manipulation of the argument vlan_set leads to stack-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 21:15:00 GMT

read more

CVE-2025-9248 - Linksys RE Series Remote Stack-Based Buffer Overflow

CVE ID : CVE-2025-9248
Published : Aug. 20, 2025, 9:15 p.m. | 6 hours, 44 minutes ago
Description : A vulnerability was found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. The impacted element is the function RP_pingGatewayByBBS of the file /goform/RP_pingGatewayByBBS. The manipulation of the argument ssidhex results in stack-based buffer overflow. The attack may be performed from a remote location. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 21:15:00 GMT

read more

CVE-2025-9249 - Linksys RE Series Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9249
Published : Aug. 20, 2025, 9:15 p.m. | 6 hours, 44 minutes ago
Description : A vulnerability was determined in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This affects the function DHCPReserveAddGroup of the file /goform/DHCPReserveAddGroup. This manipulation of the argument enable_group/name_group/ip_group/mac_group causes stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 21:15:00 GMT

read more

CVE-2025-9244 - "Linksys Router AddStaticRoute Command Injection Vulnerability"

CVE ID : CVE-2025-9244
Published : Aug. 20, 2025, 8:15 p.m. | 7 hours, 44 minutes ago
Description : A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This vulnerability affects the function addStaticRoute of the file /goform/addStaticRoute. Such manipulation of the argument staticRoute_IP_setting/staticRoute_Netmask_setting/staticRoute_Gateway_setting/staticRoute_Metric_setting/staticRoute_destType_setting leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-9245 - "Linksys WPSSTAPINEnr Stack-Based Buffer Overflow Vulnerability"

CVE ID : CVE-2025-9245
Published : Aug. 20, 2025, 8:15 p.m. | 7 hours, 44 minutes ago
Description : A vulnerability was detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. This issue affects the function WPSSTAPINEnr of the file /goform/WPSSTAPINEnr. Performing manipulation of the argument ssid results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-9246 - Linksys RE Series Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-9246
Published : Aug. 20, 2025, 8:15 p.m. | 7 hours, 44 minutes ago
Description : A flaw has been found in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Impacted is the function check_port_conflict of the file /goform/check_port_conflict. Executing manipulation of the argument single_port_rule/port_range_rule can lead to stack-based buffer overflow. The attack can be executed remotely. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 9.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2024-57154 - Dts-Shop Authentication Bypass

CVE ID : CVE-2024-57154
Published : Aug. 20, 2025, 8:15 p.m. | 5 hours, 8 minutes ago
Description : Incorrect access control in dts-shop v0.0.1-SNAPSHOT allows attackers to bypass authentication via sending a crafted payload to /admin/auth/index.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-43757 - Liferay Portal Reflected Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-43757
Published : Aug. 20, 2025, 8:15 p.m. | 5 hours, 8 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.2, 2025.Q1.0 through 2025.Q1.14, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.18 and 7.4 GA through update 92 allows a remote authenticated attacker to inject JavaScript code via _com_liferay_dynamic_data_mapping_web_portlet_DDMPortlet_definition parameter.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-50902 - Old-Peanut Wechat Applet CSRF Vulnerability

CVE ID : CVE-2025-50902
Published : Aug. 20, 2025, 8:15 p.m. | 5 hours, 8 minutes ago
Description : Cross Site Request Forgery (CSRF) vulnerability in old-peanut Open-Shop (aka old-peanut/wechat_applet__open_source) thru 1.0.0 allows attackers to gain sensitive information via crafted HTTP Post message.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-54988 - Apache Tika XXE Vulnerability

CVE ID : CVE-2025-54988
Published : Aug. 20, 2025, 8:15 p.m. | 5 hours, 8 minutes ago
Description : Critical XXE in Apache Tika (tika-parser-pdf-module) in Apache Tika 1.13 through and including 3.2.1 on all platforms allows an attacker to carry out XML External Entity injection via a crafted XFA file inside of a PDF. An attacker may be able to read sensitive data or trigger malicious requests to internal resources or third-party servers. Note that the tika-parser-pdf-module is used as a dependency in several Tika packages including at least: tika-parsers-standard-modules, tika-parsers-standard-package, tika-app, tika-grpc and tika-server-standard. Users are recommended to upgrade to version 3.2.2, which fixes this issue.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-5115 - Jetty HTTP/2 Client Resource Exhaustion Denial of Service

CVE ID : CVE-2025-5115
Published : Aug. 20, 2025, 8:15 p.m. | 5 hours, 8 minutes ago
Description : In Eclipse Jetty, versions <=9.4.57, <=10.0.25, <=11.0.25, <=12.0.21, <=12.1.0.alpha2, an HTTP/2 client may trigger the server to send RST_STREAM frames, for example by sending frames that are malformed or that should not be sent in a particular stream state, therefore forcing the server to consume resources such as CPU and memory. For example, a client can open a stream and then send WINDOW_UPDATE frames with window size increment of 0, which is illegal. Per specification https://www.rfc-editor.org/rfc/rfc9113.html#name-window_update , the server should send a RST_STREAM frame. The client can now open another stream and send another bad WINDOW_UPDATE, therefore causing the server to consume more resources than necessary, as this case does not exceed the max number of concurrent streams, yet the client is able to create an enormous amount of streams in a short period of time. The attack can be performed with other conditions (for example, a DATA frame for a closed stream) that cause the server to send a RST_STREAM frame. Links: * https://github.com/jetty/jetty.project/security/advisories/GHSA-mmxm-8w33-wc4h
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-9241 - Elunez Eladmin CSV Injection Vulnerability

CVE ID : CVE-2025-9241
Published : Aug. 20, 2025, 8:15 p.m. | 5 hours, 8 minutes ago
Description : A weakness has been identified in elunez eladmin up to 2.7. This affects the function exportUser. This manipulation causes csv injection. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 20:15:00 GMT

read more

CVE-2025-43746 - Liferay Portal Liferay DXP Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43746
Published : Aug. 20, 2025, 7:15 p.m. | 6 hours, 8 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.2, 2025.Q1.0 through 2025.Q1.10, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.18 and 7.4 GA through update 92 allows a remote authenticated attacker to inject JavaScript code via _com_liferay_dynamic_data_mapping_web_portlet_DDMPortlet_portletNamespace and _com_liferay_dynamic_data_mapping_web_portlet_DDMPortlet_namespace parameter.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 19:15:00 GMT

read more

CVE-2025-9240 - Elunez Eladmin Information Disclosure Vulnerability

CVE ID : CVE-2025-9240
Published : Aug. 20, 2025, 7:15 p.m. | 6 hours, 8 minutes ago
Description : A security flaw has been discovered in elunez eladmin up to 2.7. Affected by this issue is some unknown functionality of the file /auth/info. The manipulation results in information disclosure. The attack can be launched remotely. The exploit has been released to the public and may be exploited.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 19:15:00 GMT

read more

CVE-2024-57152 - My-Site Unauthenticated Access Control Vulnerability

CVE ID : CVE-2024-57152
Published : Aug. 20, 2025, 7:15 p.m. | 3 hours, 34 minutes ago
Description : Incorrect access control in the preHandle function of my-site v1.0.2 allows attackers to access sensitive components without authentication via the cn.luischen.interceptor.BaseInterceptor class
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 19:15:00 GMT

read more

CVE-2025-9237 - CodeAstro Ecommerce Website Cross Site Scripting

CVE ID : CVE-2025-9237
Published : Aug. 20, 2025, 6:15 p.m. | 4 hours, 34 minutes ago
Description : A vulnerability was found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /customer/my_account.php?edit_account of the component Edit Your Account Page. Performing manipulation of the argument Username results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could be used.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 18:15:00 GMT

read more

CVE-2025-9238 - Swatadru Exam-Seating-Arrangement SQL Injection Vulnerability

CVE ID : CVE-2025-9238
Published : Aug. 20, 2025, 6:15 p.m. | 4 hours, 34 minutes ago
Description : A vulnerability was determined in Swatadru Exam-Seating-Arrangement up to 97335ccebf95468d92525f4255a2241d2b0b002f. Affected is an unknown function of the file /student.php of the component Student Login. Executing manipulation of the argument email can lead to sql injection. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 18:15:00 GMT

read more

CVE-2025-9239 - Elunez Eladmin DES Key Handler Weak Encryption Strength Vulnerability

CVE ID : CVE-2025-9239
Published : Aug. 20, 2025, 6:15 p.m. | 4 hours, 34 minutes ago
Description : A vulnerability was identified in elunez eladmin up to 2.7. Affected by this vulnerability is the function EncryptUtils of the file eladmin-common/src/main/java/me/zhengjie/utils/EncryptUtils.java of the component DES Key Handler. The manipulation of the argument STR_PARAM with the input Passw0rd leads to inadequate encryption strength. The attack can be initiated remotely. The attack is considered to have high complexity. The exploitation appears to be difficult.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 18:15:00 GMT

read more

CVE-2024-53495 - Apache Struts Unauthenticated Access Control Bypass

CVE ID : CVE-2024-53495
Published : Aug. 20, 2025, 6:15 p.m. | 3 hours, 35 minutes ago
Description : Incorrect access control in the preHandle function of my-site v1.0.2.RELEASE allows attackers to access sensitive components without authentication.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 18:15:00 GMT

read more

CVE-2025-47054 - Adobe Experience Manager DOM-based Cross-Site Scripting (XSS)

CVE ID : CVE-2025-47054
Published : Aug. 20, 2025, 6:15 p.m. | 3 hours, 35 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. A low privileged attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser. Exploitation of this issue requires user interaction in that a victim must visit a specially crafted web page.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 18:15:00 GMT

read more

CVE-2025-55746 - Directus Unauthenticated File Upload and Modification Vulnerability

CVE ID : CVE-2025-55746
Published : Aug. 20, 2025, 6:15 p.m. | 3 hours, 35 minutes ago
Description : Directus is a real-time API and App dashboard for managing SQL database content. From 10.8.0 to before 11.9.3, a vulnerability exists in the file update mechanism which allows an unauthenticated actor to modify existing files with arbitrary contents (without changes being applied to the files' database-resident metadata) and / or upload new files, with arbitrary content and extensions, which won't show up in the Directus UI. This vulnerability is fixed in 11.9.3.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 18:15:00 GMT

read more

CVE-2025-9236 - Portabilis i-Diario SQL Injection Vulnerability

CVE ID : CVE-2025-9236
Published : Aug. 20, 2025, 6:15 p.m. | 3 hours, 35 minutes ago
Description : A vulnerability has been found in Portabilis i-Diario up to 2.10. This affects an unknown function of the file /intranet/educar_tipo_usuario_lst.php of the component Tipos de usàrio Page. Such manipulation of the argument nm_tipo leads to sql injection. The attack may be performed from a remote location. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 18:15:00 GMT

read more

CVE-2025-9234 - Scada-LTS Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9234
Published : Aug. 20, 2025, 5:15 p.m. | 4 hours, 35 minutes ago
Description : A vulnerability was detected in Scada-LTS up to 2.7.8.1. The affected element is an unknown function of the file maintenance_events.shtm. The manipulation of the argument Alias results in cross site scripting. The attack can be executed remotely. The exploit is now public and may be used.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-9235 - Scada-LTS Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9235
Published : Aug. 20, 2025, 5:15 p.m. | 4 hours, 35 minutes ago
Description : A flaw has been found in Scada-LTS up to 2.7.8.1. The impacted element is an unknown function of the file compound_events.shtm. This manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-8415 - Cryostat Information Disclosure

CVE ID : CVE-2025-8415
Published : Aug. 20, 2025, 5:15 p.m. | 3 hours, 34 minutes ago
Description : A vulnerability was found in the Cryostat HTTP API. Cryostat's HTTP API binds to all network interfaces, allowing possible external visibility and access to the API port if Network Policies are disabled, allowing an unauthenticated, malicious attacker to jeopardize the environment.
Severity: 5.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-8610 - AOMEI Cyber Backup Remote Code Execution Vulnerability

CVE ID : CVE-2025-8610
Published : Aug. 20, 2025, 5:15 p.m. | 3 hours, 34 minutes ago
Description : AOMEI Cyber Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AOMEI Cyber Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the StorageNode service, which listens on TCP port 9075 by default. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-26156.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-8611 - AOMEI Cyber Backup Remote Code Execution (RCE) Missing Authentication

CVE ID : CVE-2025-8611
Published : Aug. 20, 2025, 5:15 p.m. | 3 hours, 34 minutes ago
Description : AOMEI Cyber Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AOMEI Cyber Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DaoService service, which listens on TCP port 9074 by default. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-26158.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-8612 - AOMEI Backupper Workstation Local Privilege Escalation (LPE)

CVE ID : CVE-2025-8612
Published : Aug. 20, 2025, 5:15 p.m. | 3 hours, 34 minutes ago
Description : AOMEI Backupper Workstation Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of AOMEI Backupper Workstation. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. User interaction on the part of an administrator is needed additionally. The specific flaw exists within the restore functionality. By creating a junction, an attacker can abuse the service to create arbitrary files. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-27059.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-46998 - Adobe Experience Manager Stored XSS Vulnerability

CVE ID : CVE-2025-46998
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-50901 - JeeWMS Authentication Bypass Vulnerability

CVE ID : CVE-2025-50901
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : JeeWMS 771e4f5d0c01ffdeae1671be4cf102b73a3fe644 (2025-05-19) contains incorrect authentication bypass vulnerability, which can lead to arbitrary file reading.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-50904 - WinterChenS my-site Authentication Bypass

CVE ID : CVE-2025-50904
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 (2025-06-11). An attacker can exploit this vulnerability to access /admin/ API without any token.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-55444 - Online Artwork Fine Arts MCA Project SQL Injection Vulnerability

CVE ID : CVE-2025-55444
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : A SQL injection vulnerability exists in the id2 parameter of the cancel_booking.php page in Online Artwork and Fine Arts MCA Project 1.0. A remote attacker can inject arbitrary SQL queries, leading to database enumeration and potential remote code execution.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-6180 - StrongDM Client Authentication Token Interception Vulnerability

CVE ID : CVE-2025-6180
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : The StrongDM Client insufficiently protected a pre-authentication token. Attackers could exploit this to intercept and reuse the token, potentially redeeming valid authentication credentials through a race condition.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-6181 - StrongDM Windows Privilege Escalation Remote Code Execution

CVE ID : CVE-2025-6181
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : The StrongDM Windows service incorrectly handled input validation. Authenticated attackers could potentially exploit this leading to privilege escalation.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-6182 - StrongDM Windows Certificate Management Privilege Escalation Vulnerability

CVE ID : CVE-2025-6182
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : The StrongDM Windows service incorrectly handled communication related to system certificate management. Attackers could exploit this behavior to install untrusted root certificates or remove trusted ones.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-6183 - StrongDM macOS Client JSON Injection Vulnerability

CVE ID : CVE-2025-6183
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : The StrongDM macOS client incorrectly processed JSON-formatted messages. Attackers could potentially modify macOS system configuration by crafting a malicious JSON message.
Severity: 7.0 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-8309 - ManageEngine Asset Explorer Privilege Escalation Vulnerability

CVE ID : CVE-2025-8309
Published : Aug. 20, 2025, 5:15 p.m. | 2 hours, 25 minutes ago
Description : There is an improper privilege management vulnerability identified in ManageEngine's Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus products by Zohocorp. This vulnerability impacts Asset Explorer versions before 7710, ServiceDesk Plus versions before 15110, ServiceDesk Plus MSP versions before 14940, and SupportCenter Plus versions before 14940.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-46932 - Adobe Experience Manager Stored Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-46932
Published : Aug. 20, 2025, 5:15 p.m. | 1 hour, 35 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-46936 - Adobe Experience Manager Stored XSS Vulnerability

CVE ID : CVE-2025-46936
Published : Aug. 20, 2025, 5:15 p.m. | 1 hour, 35 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-46962 - Adobe Experience Manager Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-46962
Published : Aug. 20, 2025, 5:15 p.m. | 1 hour, 35 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-20131 - Cisco ISE GUI File Upload Vulnerability (Arbitrary File Upload)

CVE ID : CVE-2025-20131
Published : Aug. 20, 2025, 5:15 p.m. | 52 minutes ago
Description : A vulnerability in the GUI of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker with administrative privileges to upload files to an affected device. This vulnerability is due to improper validation of the file copy function. An attacker could exploit this vulnerability by sending a crafted file upload via the ISE GUI. A successful exploit could allow the attacker to upload arbitrary files to an affected system.
Severity: 4.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-20269 - Cisco EPNM and Prime Infrastructure HTTP Request Validation Bypass Vulnerability

CVE ID : CVE-2025-20269
Published : Aug. 20, 2025, 5:15 p.m. | 52 minutes ago
Description : A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrastructure could allow an authenticated, low-privileged, remote attacker to retrieve arbitrary files from the underlying file system on an affected device. This vulnerability is due to insufficient input validation for specific HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to the web-based management interface on an affected device. A successful exploit could allow the attacker to access sensitive files from the affected device.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-20345 - Cisco Duo Authentication Proxy Sensitive Information Disclosure Vulnerability

CVE ID : CVE-2025-20345
Published : Aug. 20, 2025, 5:15 p.m. | 52 minutes ago
Description : A vulnerability in the debug logging function of Cisco Duo Authentication Proxy could allow an authenticated, high-privileged, remote attacker to view sensitive information in a system log file. This vulnerability is due to insufficient masking of sensitive information before it is written to system log files. An attacker could exploit this vulnerability by accessing logs on an affected system. A successful exploit could allow the attacker to view sensitive information that should be restricted. 
Severity: 4.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-28041 - itranswarp Unauthenticated Access Control Vulnerability

CVE ID : CVE-2025-28041
Published : Aug. 20, 2025, 5:15 p.m. | 52 minutes ago
Description : Incorrect access control in the doFilter function of itranswarp up to 2.19 allows attackers to access sensitive components without authentication.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-46849 - Adobe Experience Manager Stored XSS

CVE ID : CVE-2025-46849
Published : Aug. 20, 2025, 5:15 p.m. | 52 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-46852 - Adobe Experience Manager Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-46852
Published : Aug. 20, 2025, 5:15 p.m. | 52 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2025-46856 - Adobe Experience Manager DOM-based Cross-Site Scripting (XSS)

CVE ID : CVE-2025-46856
Published : Aug. 20, 2025, 5:15 p.m. | 52 minutes ago
Description : Adobe Experience Manager versions 6.5.22 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. A low privileged attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser. Exploitation of this issue requires user interaction in that a victim must visit a specially crafted web page.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 17:15:00 GMT

read more

CVE-2009-10005 - ContentKeeper Web Appliance File Inclusion Vulnerability

CVE ID : CVE-2009-10005
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : ContentKeeper Web Appliance (now maintained by Impero Software) versions prior to 125.10 expose the mimencode binary via a CGI endpoint, allowing unauthenticated attackers to retrieve arbitrary files from the filesystem. By crafting a POST request to /cgi-bin/ck/mimencode with traversal and output parameters, attackers can read sensitive files such as /etc/passwd outside the webroot.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2010-10014 - Odin Secure FTP Directory Listing Buffer Overflow Vulnerability

CVE ID : CVE-2010-10014
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Odin Secure FTP <= 4.1 is vulnerable to a stack-based buffer overflow when parsing directory listings received in response to an FTP LIST command. A malicious FTP server can send an overly long filename in the directory listing, which overflows a fixed-size stack buffer in the client and overwrites the Structured Exception Handler (SEH). This allows remote attackers to execute arbitrary code on the client system.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2010-20042 - Xion Audio Player SEH Overwrite Vulnerability

CVE ID : CVE-2010-20042
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Xion Audio Player versions prior to 1.0.126 are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler (SEH) chain, allowing an attacker to hijack execution flow and run arbitrary code.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2010-20045 - FileWrangler FTP Server Buffer Overflow

CVE ID : CVE-2010-20045
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : FileWrangler <= 5.30 suffers from a stack-based buffer overflow vulnerability when parsing directory listings from an FTP server. A malicious server can send an overlong folder name in response to a LIST command, triggering memory corruption during client-side rendering. Exploitation requires passive user interaction—simply connecting to the server—without further input. Successful exploitation may lead to arbitrary code execution.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2010-20049 - LeapFTP FTP Client Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2010-20049
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : LeapFTP < 3.1.x contains a stack-based buffer overflow vulnerability in its FTP client parser. When the client receives a directory listing containing a filename longer than 528 bytes, the application fails to properly bound-check the input and overwrites the Structured Exception Handler (SEH) chain. This allows an attacker operating a malicious FTP server to execute arbitrary code on the victim’s machine when the file is listed or downloaded.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2010-20059 - FreeNAS Unauthenticated Command Execution Backdoor

CVE ID : CVE-2010-20059
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : FreeNAS 0.7.2 prior to revision 5543 includes an unauthenticated command‐execution backdoor in its web interface. The exec_raw.php script exposes a cmd parameter that is passed directly to the underlying shell without sanitation.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2010-20103 - ProFTPD Backdoor Command Injection Vulnerability

CVE ID : CVE-2010-20103
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and December 2, 2010. The backdoor implements a hidden FTP command trigger that, when invoked, causes the server to execute arbitrary shell commands with root privileges. This allows remote, unauthenticated attackers to run any OS command on the FTP server host.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10020 - Kaillera Server UDP Packet Handling Denial-of-Service Vulnerability

CVE ID : CVE-2011-10020
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Kaillera Server version 0.86 is vulnerable to a denial-of-service condition triggered by sending a malformed UDP packet after the initial handshake. Once a client sends a valid HELLO0.83 packet and receives a response, any subsequent malformed packet causes the server to crash and become unresponsive. This flaw stems from improper input validation in the server’s UDP packet handler, allowing unauthenticated remote attackers to disrupt service availability.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10021 - Magix Musik Maker Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2011-10021
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy() operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler (SEH). By crafting a malicious .mmm file, an attacker can trigger the overflow when the file is opened, potentially leading to arbitrary code execution. This vulnerability was remediated in version 17.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10022 - SPlayer HTTP Response Handler Stack-Based Buffer Overflow

CVE ID : CVE-2011-10022
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : SPlayer version 3.7 and earlier is vulnerable to a stack-based buffer overflow when processing HTTP responses containing an overly long Content-Type header. The vulnerability occurs due to improper bounds checking on the header value, allowing an attacker to overwrite the Structured Exception Handler (SEH) and execute arbitrary code. Exploitation requires the victim to open a media file that triggers an HTTP request to a malicious server, which responds with a crafted Content-Type header.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10023 - MJM QuickPlayer Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2011-10023
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : MJM QuickPlayer (likely now referred to as MJM Player) version 2010 contains a stack-based buffer overflow vulnerability triggered by opening a malicious .s3m music file. The flaw occurs due to improper bounds checking in the file parser, allowing an attacker to overwrite memory and execute arbitrary code. Exploitation is achieved via a crafted payload that bypasses DEP and ASLR protections using ROP techniques, and requires user interaction to open the file.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10024 - MJM Core Player Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2011-10024
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : MJM Core Player (likely now referred to as MJM Player) 2011 is vulnerable to a stack-based buffer overflow when parsing specially crafted .s3m music files. The vulnerability arises from improper bounds checking in the file parser, allowing an attacker to overwrite memory on the stack and execute arbitrary code. Exploitation is triggered when a user opens a malicious .s3m file, and the exploit bypasses DEP and ASLR protections using a ROP chain.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10025 - Subtitle Processor Buffer Overflow Vulnerability

CVE ID : CVE-2011-10025
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Subtitle Processor 7.7.1 contains a buffer overflow vulnerability in its .m3u file parser. When a crafted playlist file is opened, the application converts input to Unicode and copies it to a fixed-size stack buffer without proper bounds checking. This allows an attacker to overwrite the Structured Exception Handler (SEH) and execute arbitrary code.
Severity: 8.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10026 - Spreecommerce Remote Command Execution Vulnerability

CVE ID : CVE-2011-10026
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Spreecommerce versions prior to 0.50.x contain a remote command execution vulnerability in the API's search functionality. Improper input sanitation allows attackers to inject arbitrary shell commands via the search[instance_eval] parameter, which is dynamically invoked using Ruby’s send method. This flaw enables unauthenticated attackers to execute commands on the server.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10027 - AOL Desktop Buffer Overflow Vulnerability

CVE ID : CVE-2011-10027
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : AOL Desktop 9.6 contains a buffer overflow vulnerability in its Tool\rich.rct component when parsing .rtx files. By embedding an overly long string in a hyperlink tag, an attacker can trigger a stack-based buffer overflow due to the use of unsafe strcpy operations. This allows remote attackers to execute arbitrary code when a victim opens a malicious .rtx file. AOL Desktop is end-of-life and no longer supported. Users are encouraged to migrate to AOL Desktop Gold or alternative platforms.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10028 - RealNetworks RealArcade ActiveX Exec Arbitrary Command Execution

CVE ID : CVE-2011-10028
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : The RealNetworks RealArcade platform includes an ActiveX control (InstallerDlg.dll, version 2.6.0.445) that exposes a method named Exec via the StubbyUtil.ProcessMgr COM object. This method allows remote attackers to execute arbitrary commands on a victim's Windows machine without proper validation or restrictions. This platform was sometimes referred to or otherwise known as RealArcade or Arcade Games and has since consolidated with RealNetworks' platform, GameHouse.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10029 - Solar FTP Server Format String Denial of Service

CVE ID : CVE-2011-10029
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Solar FTP Server fails to properly handle format strings passed to the USER command. When a specially crafted string containing format specifiers is sent, the server crashes due to a read access violation in the __output_1() function of sfsservice.exe. This results in a denial of service (DoS) condition.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2011-10030 - Foxit PDF Reader File Write Vulnerability

CVE ID : CVE-2011-10030
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Foxit PDF Reader <  4.3.1.0218 exposes a JavaScript API function, createDataObject(), that allows untrusted PDF content to write arbitrary files anywhere on disk. By embedding a malicious PDF that calls this API, an attacker can drop executables or scripts into privileged folders, leading to code execution the next time the system boots or the user logs in.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2012-10061 - Sockso Music Host Server Path Traversal Vulnerability

CVE ID : CVE-2012-10061
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Sockso Music Host Server versions <= 1.5 are vulnerable to a path traversal flaw that allows unauthenticated remote attackers to read arbitrary files from the server’s filesystem. The vulnerability exists in the HTTP interface on port 4444, where the endpoint /file/ fails to properly sanitize user-supplied input. Attackers can traverse directories and access sensitive files outside the intended web root.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2024-57157 - Jantent Authentication Bypass Vulnerability

CVE ID : CVE-2024-57157
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Incorrect access control in Jantent v1.1 allows attackers to bypass authentication and access sensitive APIs without a token.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2025-55731 - Frappe SQL Injection Vulnerability

CVE ID : CVE-2025-55731
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Frappe is a full-stack web application framework. A carefully crafted request could extract data that the user would normally not have access to, via SQL injection. This vulnerability is fixed in 15.74.2 and 14.96.15.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2025-55732 - Frappe SQL Injection Bypass

CVE ID : CVE-2025-55732
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : Frappe is a full-stack web application framework. Prior to 15.74.2 and 14.96.15, an attacker could implement SQL injection through specially crafted requests, allowing malicious people to access sensitive information. This vulnerability is a bypass of the official patch released for CVE-2025-52895. This vulnerability is fixed in 15.74.2 and 14.96.15.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2025-55751 - "OpenBoardLite Redirect URL Forgery (Phishing/Credentials Theft)"

CVE ID : CVE-2025-55751
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : OnboardLite is the result of the Influx Initiative, our vision for an improved student organization lifecycle at the University of Central Florida. An attacker can craft a link to the trusted application that, when visited, redirects the user to a malicious external site. This enables phishing, credential theft, malware delivery, and trust abuse. Any version with commit hash 6cca19e or later implements jwt signing for the redirect url parameter.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2025-9233 - Scada-LTS Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9233
Published : Aug. 20, 2025, 4:15 p.m. | 1 hour ago
Description : A security vulnerability has been detected in Scada-LTS up to 2.7.8.1. Impacted is an unknown function of the file view_edit.shtm. The manipulation of the argument Name leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 16:15:00 GMT

read more

CVE-2025-55498 - Tenda AC6 Buffer Overflow

CVE ID : CVE-2025-55498
Published : Aug. 20, 2025, 3:15 p.m. | 2 hours ago
Description : Tenda AC6 V15.03.06.23_multi was discovered to contain a buffer overflow via the time parameter in the fromSetSysTime function.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2024-57491 - "Jobx Authentication Bypass"

CVE ID : CVE-2024-57491
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : Authentication Bypass vulnerability in jobx up to v1.0.1-RELEASE allows an attacker can exploit this vulnerability to access sensitive API without any token via the preHandle function.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-1139 - IBM Edge Application Manager Privilege Escalation Vulnerability

CVE ID : CVE-2025-1139
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : IBM Edge Application Manager 4.5 could allow a local user to read or modify resources that they should not have authorization to access due to incorrect permission assignment.
Severity: 6.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-1142 - IBM Edge Application Manager SSRF Vulnerability

CVE ID : CVE-2025-1142
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : IBM Edge Application Manager 4.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-36114 - IBM QRadar SOAR Plugin App Directory Traversal Vulnerability

CVE ID : CVE-2025-36114
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : IBM QRadar SOAR Plugin App 1.0.0 through 5.6.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-43748 - Liferay Portal Cross-Site Request Forgery (CSRF)

CVE ID : CVE-2025-43748
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : Insufficient CSRF protection for omni-administrator users in Liferay Portal 7.0.0 through 7.4.3.119, and Liferay DXP 2024.Q1.1 through 2024.Q1.6, 2023.Q4.0 through 2023.Q4.9, 2023.Q3.1 through 2023.Q3.9, 7.4 GA through update 92, 7.3 GA through update 36, and older unsupported versions allows attackers to execute Cross-Site Request Forgery
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-50864 - Elysia-Cors Origin Validation Bypass Vulnerability

CVE ID : CVE-2025-50864
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : An Origin Validation Error in the elysia-cors library thru 1.3.0 allows attackers to bypass Cross-Origin Resource Sharing (CORS) restrictions. The library incorrectly validates the supplied origin by checking if it is a substring of any domain in the site's CORS policy, rather than performing an exact match. For example, a malicious origin like "notexample.com", "example.common.net" is whitelisted when the site's CORS policy specifies "example.com." This vulnerability enables unauthorized access to user data on sites using the elysia-cors library for CORS validation.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-51990 - XWiki Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-51990
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : XWiki through version 17.3.0 is affected by multiple stored Cross-Site Scripting (XSS) vulnerabilities in the Administration interface, specifically under the Presentation section of the Global Preferences panel. An authenticated administrator can inject arbitrary JavaScript payloads into the HTTP Meta Info, Footer Copyright, and Footer Version fields. These inputs are stored and subsequently rendered without proper output encoding or sanitization on public-facing pages. As a result, the injected scripts are persistently executed in the browser context of any visitor to the affected instances including both authenticated and unauthenticated users. No user interaction is required beyond visiting a page that includes the malicious content. Successful exploitation can lead to session hijacking, credential theft, unauthorized actions via session riding, or further compromise of the application through client-side attacks. The vulnerability introduces significant risk in any deployment, especially in shared or internet-facing environments where administrator credentials may be compromised.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-51991 - XWiki Server-Side Template Injection Vulnerability

CVE ID : CVE-2025-51991
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : XWiki through version 17.3.0 is vulnerable to Server-Side Template Injection (SSTI) in the Administration interface, specifically within the HTTP Meta Info field of the Global Preferences Presentation section. An authenticated administrator can inject crafted Apache Velocity template code, which is rendered on the server side without proper validation or sandboxing. This enables the execution of arbitrary template logic, which may expose internal server information or, in specific configurations, lead to further exploitation such as remote code execution or sensitive data leakage. The vulnerability resides in improper handling of dynamic template rendering within user-supplied configuration fields.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-55482 - Tenda AC6 Buffer Overflow Vulnerability

CVE ID : CVE-2025-55482
Published : Aug. 20, 2025, 3:15 p.m. | 53 minutes ago
Description : Tenda AC6 V15.03.06.23_multi is vulnerable to Buffer Overflow in the formSetCfm function.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 15:15:00 GMT

read more

CVE-2025-30256 - Tenda AC6 HTTP Header Parsing Denial of Service

CVE ID : CVE-2025-30256
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : A denial of service vulnerability exists in the HTTP Header Parsing functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted series of HTTP requests can lead to a reboot. An attacker can send multiple network packets to trigger this vulnerability.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-31355 - Tenda AC6 Firmware Signature Validation Code Execution Vulnerability

CVE ID : CVE-2025-31355
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : A firmware update vulnerability exists in the Firmware Signature Validation functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted malicious file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-32010 - Tenda AC6 Cloud API Stack-Based Buffer Overflow Vulnerability

CVE ID : CVE-2025-32010
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : A stack-based buffer overflow vulnerability exists in the Cloud API functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP response can lead to arbitrary code execution. An attacker can send an HTTP response to trigger this vulnerability.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-50503 - Touch Lebanon Mobile App Password Reset Bypass Vulnerability

CVE ID : CVE-2025-50503
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : A vulnerability in the password reset workflow of the Touch Lebanon Mobile App 2.20.2 allows an attacker to bypass the OTP reset password mechanism. By manipulating the reset process, an unauthorized user may be able to reset the password and gain access to the account without needing to provide a legitimate authentication factor, such as an OTP. This compromises account security and allows for potential unauthorized access to user data.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-54923 - Apache Service Remote Code Execution Vulnerability

CVE ID : CVE-2025-54923
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : CWE-502: Deserialization of Untrusted Data vulnerability exists that could cause remote code execution and compromise of system integrity when authenticated users send crafted data to a network-exposed service that performs unsafe deserialization.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-54924 - Adobe Acrobat SSRF

CVE ID : CVE-2025-54924
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker sends a specially crafted document to a vulnerable endpoint.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-54925 - Apache HTTP Server SSRF

CVE ID : CVE-2025-54925
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : CWE-918: Server-Side Request Forgery (SSRF) vulnerability exists that could cause unauthorized access to sensitive data when an attacker configures the application to access a malicious url.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-54926 - Apache HTTP Server Remote Code Execution Path Traversal

CVE ID : CVE-2025-54926
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution when an authenticated attacker with admin privileges uploads a malicious file over HTTP which then gets executed.
Severity: 7.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-54927 - Apache HTTP Server Path Traversal Vulnerability

CVE ID : CVE-2025-54927
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause unauthorized access to sensitive files when an authenticated attackers uses a crafted path input that is processed by the system.
Severity: 4.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-55483 - Tenda AC6 Buffer Overflow Vulnerability

CVE ID : CVE-2025-55483
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : Tenda AC6 V15.03.06.23_multi is vulnerable to Buffer Overflow in the function formSetMacFilterCfg via the parameters macFilterType and deviceList.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-55499 - Tenda AC6 Buffer Overflow Vulnerability

CVE ID : CVE-2025-55499
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : Tenda AC6 V15.03.06.23_multi was discovered to contain a buffer overflow via the ntpServer parameter in the fromSetSysTime function.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-55503 - Tenda AC6 Stack Overflow Vulnerability

CVE ID : CVE-2025-55503
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : Tenda AC6 V15.03.06.23_multi has a stack overflow vulnerability via the deviceName parameter in the saveParentControlInfo function.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-8448 - BMC Software SMB Exposes Sensitive Credentials

CVE ID : CVE-2025-8448
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : CWE-200: Exposure of Sensitive Information to an Unauthorized Actor vulnerability exists that could cause unauthorized access to sensitive credential data when an attacker is able to capture local SMB traffic between a valid user within the BMS network and the vulnerable products.
Severity: 2.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-8449 - Apache BMS Denial of Service

CVE ID : CVE-2025-8449
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : CWE-400: Uncontrolled Resource Consumption vulnerability exists that could cause a denial of service when an authenticated user sends a specially crafted request to a specific endpoint from within the BMS network.
Severity: 4.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-9074 - "Docker Desktop Unauthenticated Engine API Access Vulnerability"

CVE ID : CVE-2025-9074
Published : Aug. 20, 2025, 2:15 p.m. | 1 hour, 53 minutes ago
Description : A vulnerability was identified in Docker Desktop that allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with or without Enhanced Container Isolation (ECI) enabled, and with or without the "Expose daemon on tcp://localhost:2375 without TLS" option enabled. This can lead to execution of a wide range of privileged commands to the engine API, including controlling other containers, creating new ones, managing images etc. In some circumstances (e.g. Docker Desktop for Windows with WSL backend) it also allows mounting the host drive with the same privileges as the user running Docker Desktop.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-24322 - Tenda AC6 Remote Code Execution Vulnerability

CVE ID : CVE-2025-24322
Published : Aug. 20, 2025, 2:15 p.m. | 27 minutes ago
Description : An unsafe default authentication vulnerability exists in the Initial Setup Authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted network request can lead to arbitrary code execution. An attacker can browse to the device to trigger this vulnerability.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-24496 - Tenda AC6 Information Disclosure

CVE ID : CVE-2025-24496
Published : Aug. 20, 2025, 2:15 p.m. | 27 minutes ago
Description : An information disclosure vulnerability exists in the /goform/getproductInfo functionality of Tenda AC6 V5.0 V02.03.01.110. Specially crafted network packets can lead to a disclosure of sensitive information. An attacker can send packets to trigger this vulnerability.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-27129 - Tenda AC6 HTTP Authentication Bypass Code Execution Vulnerability

CVE ID : CVE-2025-27129
Published : Aug. 20, 2025, 2:15 p.m. | 27 minutes ago
Description : An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted HTTP request can lead to arbitrary code execution. An attacker can send packets to trigger this vulnerability.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 14:15:00 GMT

read more

CVE-2025-43749 - Liferay Portal Unauthenticated File Upload Vulnerability

CVE ID : CVE-2025-43749
Published : 20 août 2025 13:15 | 52 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.1, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allows unauthenticated users (guests) to access via URL files uploaded in the form and stored in document_library
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-43750 - Liferay Portal Unvalidated File Upload Vulnerability

CVE ID : CVE-2025-43750
Published : 20 août 2025 13:15 | 52 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.1, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.19 and 7.4 GA through update 92 allows remote unauthenticated users (guests) to upload files via the form attachment field without proper validation, enabling extension obfuscation and bypassing MIME type checks.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-4437 - CRI-O Denial-of-Service Vulnerability

CVE ID : CVE-2025-4437
Published : 20 août 2025 13:15 | 52 minutes ago
Description : There's a vulnerability in the CRI-O application where when container is launched with securityContext.runAsUser specifying a non-existent user, CRI-O attempts to create the user, reading the container's entire /etc/passwd file into memory. If this file is excessively large, it can cause the a high memory consumption leading applications to be killed due to out-of-memory. As a result a denial-of-service can be achieved, possibly disrupting other pods and services running in the same host.
Severity: 5.7 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-4877 - Libssh Out-of-Bounds Write Vulnerability

CVE ID : CVE-2025-4877
Published : 20 août 2025 13:15 | 52 minutes ago
Description : There's a vulnerability in the libssh package where when a libssh consumer passes in an unexpectedly large input buffer to ssh_get_fingerprint_hash() function. In such cases the bin_to_base64() function can experience an integer overflow leading to a memory under allocation, when that happens it's possible that the program perform out of bounds write leading to a heap corruption. This issue affects only 32-bits builds of libssh.
Severity: 4.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-54172 - QuickCMS Stored XSS Vulnerability in sTitle Parameter

CVE ID : CVE-2025-54172
Published : 20 août 2025 13:15 | 52 minutes ago
Description : QuickCMS is vulnerable to Stored XSS in sTitle parameter in page editor functionality. Malicious attacker with admin privileges can inject arbitrary HTML and JS into website, which will be rendered/executed when visiting edited page. Regular admin user is not able to inject any JS scripts into the page. The vendor was notified early about this vulnerability, but didn't respond with the details of vulnerability or vulnerable version range. Only version 6.8 was tested and confirmed as vulnerable, other versions were not tested and might also be vulnerable.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-54174 - QuickCMS Cross-Site Request Forgery (CSRF) in Article Creation

CVE ID : CVE-2025-54174
Published : 20 août 2025 13:15 | 52 minutes ago
Description : QuickCMS is vulnerable to Cross-Site Request Forgery in article creation functionality. Malicious attacker can craft special website, which when visited by the admin, will automatically send a POST request creating a malicious article with content defined by the attacker. The vendor was notified early about this vulnerability, but didn't respond with the details of vulnerability or vulnerable version range. Only version 6.8 was tested and confirmed as vulnerable, other versions were not tested and might also be vulnerable.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-54175 - QuickCMS Reflected XSS in Thumbnail Viewer sFileName Parameter

CVE ID : CVE-2025-54175
Published : 20 août 2025 13:15 | 52 minutes ago
Description : QuickCMS.EXT is vulnerable to Reflected XSS in sFileName parameter in thumbnail viewer functionality.  An attacker can craft a malicious URL that results in arbitrary JavaScript execution in the victim's browser when opened. The vendor was notified early about this vulnerability, but didn't respond with the details of vulnerability or vulnerable version range. Only version 6.8 was tested and confirmed as vulnerable, other versions were not tested and might also be vulnerable.
Severity: 4.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-8453 - Apache root-level daemon Privilege Escalation Arbitrary Code Execution

CVE ID : CVE-2025-8453
Published : 20 août 2025 13:15 | 52 minutes ago
Description : CWE-269: Improper Privilege Management vulnerability exists that could cause privilege escalation and arbitrary code execution when a privileged engineer user with console access modifies a configuration file used by a root-level daemon to execute custom scripts.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 13:15:00 GMT

read more

CVE-2025-43741 - Liferay Portal Liferay DXP Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43741
Published : 20 août 2025 12:15 | 1 heure, 52 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.3, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allows an remote authenticated attacker to inject JavaScrip in the _com_liferay_users_admin_web_portlet_UsersAdminPortlet_assetTagNames parameter
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 12:15:00 GMT

read more

CVE-2025-43742 - Liferay Portal Reflected Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-43742
Published : 20 août 2025 12:15 | 1 heure, 52 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.3, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allows an remote non-authenticated attacker to inject JavaScript in web content for friendly urls.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 12:15:00 GMT

read more

CVE-2025-7777 - Apache Mirror-Registry HTTP Host Header Injection Vulnerability

CVE ID : CVE-2025-7777
Published : 20 août 2025 12:15 | 1 heure, 52 minutes ago
Description : The mirror-registry doesn't properly sanitize the host header HTTP header in HTTP request received, allowing an attacker to perform malicious redirects to attacker-controlled domains or phishing campaigns.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 12:15:00 GMT

read more

CVE-2025-8102 - Easy Digital Downloads WordPress CSRF

CVE ID : CVE-2025-8102
Published : 20 août 2025 12:15 | 1 heure, 52 minutes ago
Description : The Easy Digital Downloads plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.5.0. This is due to missing nonce validations in the edd_sendwp_disconnect() and edd_sendwp_remote_install() functions. This makes it possible for unauthenticated attackers to deactivate or download and activate the SendWP plugin via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 12:15:00 GMT

read more

CVE-2025-9173 - Emlog Pro Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-9173
Published : 20 août 2025 11:15 | 2 heures, 52 minutes ago
Description : A weakness has been identified in Emlog Pro up to 2.5.18. This issue affects some unknown processing of the file /admin/media.php?action=upload&sid=0. Executing manipulation of the argument File can lead to unrestricted upload. The attack may be launched remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 11:15:00 GMT

read more

CVE-2025-57727 - JetBrains IntelliJ IDEA Remote Reference Credentials Disclosure Vulnerability

CVE ID : CVE-2025-57727
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains IntelliJ IDEA before 2025.2 credentials disclosure was possible via remote reference
Severity: 4.7 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-57728 - JetBrains IntelliJ IDEA Code With Me Guest File Disclosure

CVE ID : CVE-2025-57728
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains IntelliJ IDEA before 2025.2 improper access control allowed Code With Me guest to discover hidden files
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-57729 - JetBrains IntelliJ IDEA Plugin Startup Vulnerability

CVE ID : CVE-2025-57729
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains IntelliJ IDEA before 2025.2 unexpected plugin startup was possible due to automatic LSP server start
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-57730 - JetBrains IntelliJ IDEA HTML Injection Vulnerability

CVE ID : CVE-2025-57730
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains IntelliJ IDEA before 2025.2 hTML injection was possible via Remote Development feature
Severity: 5.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-57731 - JetBrains YouTrack Stored XSS

CVE ID : CVE-2025-57731
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains YouTrack before 2025.2.92387 stored XSS was possible via Mermaid diagram content
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-57732 - JetBrains TeamCity Directory Ownership Escalation

CVE ID : CVE-2025-57732
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains TeamCity before 2025.07.1 privilege escalation was possible due to incorrect directory ownership
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-57733 - JetBrains TeamCity SMTP Injection Vulnerability

CVE ID : CVE-2025-57733
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains TeamCity before 2025.07.1 sMTP injection was possible allowing modification of email content
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-57734 - JetBrains TeamCity AWS Credentials Exposed

CVE ID : CVE-2025-57734
Published : 20 août 2025 10:15 | 3 heures, 52 minutes ago
Description : In JetBrains TeamCity before 2025.07.1 aWS credentials were exposed in Docker script files
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 10:15:00 GMT

read more

CVE-2025-5260 - Pik Online Yazılım Çözümleri A.Ş. Pik Online SSRF Vulnerability

CVE ID : CVE-2025-5260
Published : 20 août 2025 09:15 | 4 heures, 52 minutes ago
Description : Server-Side Request Forgery (SSRF) vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Server Side Request Forgery.This issue affects Pik Online: before 3.1.5.
Severity: 8.6 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 09:15:00 GMT

read more

CVE-2025-5261 - Pik Online Authorization Bypass Through User-Controlled Key

CVE ID : CVE-2025-5261
Published : 20 août 2025 09:15 | 4 heures, 52 minutes ago
Description : Authorization Bypass Through User-Controlled Key vulnerability in Pik Online Yazılım Çözümleri A.Ş. Pik Online allows Exploitation of Trusted Identifiers.This issue affects Pik Online: before 3.1.5.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 09:15:00 GMT

read more

CVE-2025-9228 - MiR Text Note Authorization Bypass

CVE ID : CVE-2025-9228
Published : 20 août 2025 09:15 | 4 heures, 52 minutes ago
Description : MiR software versions prior to version 3.0.0 have insufficient authorization controls when creating text notes, allowing low-privilege users to create notes which are intended only for administrative users.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 09:15:00 GMT

read more

CVE-2025-9229 - MiR Error Handling Information Disclosure Vulnerability

CVE ID : CVE-2025-9229
Published : 20 août 2025 09:15 | 4 heures, 52 minutes ago
Description : Information disclosure vulnerability in error handling in MiR software prior to version 3.0.0 allows unauthenticated attackers to view detailed error information, such as file paths and other data, via access to verbose error pages.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 09:15:00 GMT

read more

CVE-2024-39954 - Apache EventMesh SSRF

CVE ID : CVE-2024-39954
Published : Aug. 20, 2025, 9:15 a.m. | 4 hours, 5 minutes ago
Description : CWE-918 Server-Side Request Forgery (SSRF) in eventmesh-runtime module in WebhookUtil.java on windows\linux\mac os e.g. allows the attacker can abuse functionality on the server to read or update internal resources. Users are recommended to upgrade to version 1.12.0 or use the master branch , which fixes this issue.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 09:15:00 GMT

read more

CVE-2025-54677 - vcita Online Booking Scheduling Calendar for WordPress Unrestricted File Upload Vulnerability

CVE ID : CVE-2025-54677
Published : Aug. 20, 2025, 8:15 a.m. | 5 hours, 5 minutes ago
Description : Unrestricted Upload of File with Dangerous Type vulnerability in vcita Online Booking & Scheduling Calendar for WordPress by vcita allows Using Malicious Files. This issue affects Online Booking & Scheduling Calendar for WordPress by vcita: from n/a through 4.5.3.
Severity: 9.1 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54713 - Magepeopleteam Taxi Booking Manager for WooCommerce Authentication Bypass

CVE ID : CVE-2025-54713
Published : Aug. 20, 2025, 8:15 a.m. | 5 hours, 5 minutes ago
Description : Authentication Bypass Using an Alternate Path or Channel vulnerability in magepeopleteam Taxi Booking Manager for WooCommerce allows Authentication Abuse. This issue affects Taxi Booking Manager for WooCommerce: from n/a through 1.3.0.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54726 - Miguel Useche JS Archive List SQL Injection

CVE ID : CVE-2025-54726
Published : Aug. 20, 2025, 8:15 a.m. | 5 hours, 5 minutes ago
Description : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Miguel Useche JS Archive List allows SQL Injection. This issue affects JS Archive List: from n/a through n/a.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54735 - CubeWP Framework Privilege Escalation

CVE ID : CVE-2025-54735
Published : Aug. 20, 2025, 8:15 a.m. | 5 hours, 5 minutes ago
Description : Incorrect Privilege Assignment vulnerability in Emraan Cheema CubeWP Framework allows Privilege Escalation. This issue affects CubeWP Framework: from n/a through 1.1.24.
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54750 - FunnelKit Funnel Builder PHP Remote File Inclusion Vulnerability

CVE ID : CVE-2025-54750
Published : Aug. 20, 2025, 8:15 a.m. | 5 hours, 5 minutes ago
Description : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FunnelKit Funnel Builder by FunnelKit allows PHP Local File Inclusion. This issue affects Funnel Builder by FunnelKit: from n/a through 3.11.1.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-55715 - Themeisle Otter - Gutenberg Block Sensitive Data Information Disclosure

CVE ID : CVE-2025-55715
Published : Aug. 20, 2025, 8:15 a.m. | 5 hours, 5 minutes ago
Description : Insertion of Sensitive Information Into Sent Data vulnerability in Themeisle Otter - Gutenberg Block allows Retrieve Embedded Sensitive Data. This issue affects Otter - Gutenberg Block: from n/a through 3.1.0.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-9225 - MiR Robots and MiR Fleet Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9225
Published : Aug. 20, 2025, 8:15 a.m. | 5 hours, 5 minutes ago
Description : Stored cross-site scripting (XSS) in the web interface of MiR software versions prior to 3.0.0 on MiR Robots and MiR Fleet allows execution of arbitrary JavaScript code in a victim’s browser
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54053 - Groundhogg Deserialization of Untrusted Data Object Injection

CVE ID : CVE-2025-54053
Published : Aug. 20, 2025, 8:15 a.m. | 3 hours, 33 minutes ago
Description : Deserialization of Untrusted Data vulnerability in Adrian Tobey Groundhogg allows Object Injection. This issue affects Groundhogg: from n/a through 4.2.2.
Severity: 6.6 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54055 - Skygroup Druco Cross-site Scripting Vulnerability

CVE ID : CVE-2025-54055
Published : Aug. 20, 2025, 8:15 a.m. | 3 hours, 33 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in skygroup Druco allows Reflected XSS. This issue affects Druco: from n/a through 1.5.2.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54056 - LambertGroup Responsive HTML5 Audio Player PRO With Playlist Cross-site Scripting

CVE ID : CVE-2025-54056
Published : Aug. 20, 2025, 8:15 a.m. | 3 hours, 33 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LambertGroup Responsive HTML5 Audio Player PRO With Playlist allows Reflected XSS. This issue affects Responsive HTML5 Audio Player PRO With Playlist: from n/a through 3.5.8.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54670 - Bobbingwide Oik Cross-site Scripting (XSS)

CVE ID : CVE-2025-54670
Published : Aug. 20, 2025, 8:15 a.m. | 3 hours, 33 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bobbingwide oik allows Reflected XSS. This issue affects oik: from n/a through 4.15.2.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54052 - Realtyna Realtyna Organic IDX CSRF Remote File Inclusion Vulnerability

CVE ID : CVE-2025-54052
Published : Aug. 20, 2025, 8:15 a.m. | 3 hours, 5 minutes ago
Description : Cross-Site Request Forgery (CSRF) vulnerability in Realtyna Realtyna Organic IDX plugin allows PHP Local File Inclusion. This issue affects Realtyna Organic IDX plugin: from n/a through 5.0.0.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54031 - Schiocco Support Board PHP Remote File Inclusion Vulnerability

CVE ID : CVE-2025-54031
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Schiocco Support Board allows PHP Local File Inclusion. This issue affects Support Board: from n/a through 3.8.0.
Severity: 8.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54032 - WebCodingPlace Real Estate Manager Pro Cross-site Scripting

CVE ID : CVE-2025-54032
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WebCodingPlace Real Estate Manager Pro allows Reflected XSS. This issue affects Real Estate Manager Pro: from n/a through 12.7.3.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54034 - Tribulant Software Newsletters PHP Remote File Inclusion Vulnerability

CVE ID : CVE-2025-54034
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Tribulant Software Newsletters allows PHP Local File Inclusion. This issue affects Newsletters: from n/a through 4.10.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54040 - Webba Booking Missing Authorization Vulnerability

CVE ID : CVE-2025-54040
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Missing Authorization vulnerability in Webba Appointment Booking Webba Booking allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Webba Booking: from n/a through 5.1.20.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54044 - CreativeMedia Elite Video Player Cross-site Scripting Vulnerability

CVE ID : CVE-2025-54044
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in _CreativeMedia_ Elite Video Player allows Reflected XSS. This issue affects Elite Video Player: from n/a through 10.0.5.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54046 - QuanticaLabs Cost Calculator Cross-site Scripting Vulnerability

CVE ID : CVE-2025-54046
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in QuanticaLabs Cost Calculator allows Stored XSS. This issue affects Cost Calculator: from n/a through 7.4.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54048 - miniOrange Custom API for WP SQL Injection

CVE ID : CVE-2025-54048
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in miniOrange Custom API for WP allows SQL Injection. This issue affects Custom API for WP: from n/a through 4.2.2.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54049 - miniOrange Custom API for WP Privilege Escalation Vulnerability

CVE ID : CVE-2025-54049
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 57 minutes ago
Description : Incorrect Privilege Assignment vulnerability in miniOrange Custom API for WP allows Privilege Escalation. This issue affects Custom API for WP: from n/a through 4.2.2.
Severity: 9.9 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54019 - Bearsthemes Alone Code Injection Vulnerability

CVE ID : CVE-2025-54019
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 10 minutes ago
Description : Improper Control of Generation of Code ('Code Injection') vulnerability in Bearsthemes Alone allows Code Injection. This issue affects Alone: from n/a through n/a.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54021 - Mitchell Bennis Simple File List Path Traversal

CVE ID : CVE-2025-54021
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 10 minutes ago
Description : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitchell Bennis Simple File List allows Path Traversal. This issue affects Simple File List: from n/a through 6.1.14.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54025 - RelyWP Coupon Affiliates Missing Authorization Vulnerability

CVE ID : CVE-2025-54025
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 10 minutes ago
Description : Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Coupon Affiliates: from n/a through 6.4.0.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54027 - Schiocco Support Board Cross-site Scripting

CVE ID : CVE-2025-54027
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 10 minutes ago
Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Schiocco Support Board allows Reflected XSS. This issue affects Support Board: from n/a through 3.8.0.
Severity: 7.1 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-54028 - Saleswonder Team Tobias CF7 WOW Styler PHP Remote File Inclusion Vulnerability

CVE ID : CVE-2025-54028
Published : Aug. 20, 2025, 8:15 a.m. | 1 hour, 10 minutes ago
Description : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Saleswonder Team Tobias CF7 WOW Styler allows PHP Local File Inclusion. This issue affects CF7 WOW Styler: from n/a through 1.7.2.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 08:15:00 GMT

read more

CVE-2025-9202 - ColorMag WordPress Unauthorized Data Modification Vulnerability

CVE ID : CVE-2025-9202
Published : Aug. 20, 2025, 7:15 a.m. | 57 minutes ago
Description : The ColorMag theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the welcome_notice_import_handler() function in all versions up to, and including, 4.0.19. This makes it possible for authenticated attackers, with Subscriber-level access and above, to install the ThemeGrill Demo Importer plugin.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 07:15:00 GMT

read more

CVE-2025-53522 - Movable Type Email Password Reset Vulnerability

CVE ID : CVE-2025-53522
Published : Aug. 20, 2025, 5:15 a.m. | 2 hours, 57 minutes ago
Description : Movable Type contains an issue with use of less trusted source. If exploited, tampered email to reset a password may be sent by a remote unauthenticated attacker.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 05:15:00 GMT

read more

CVE-2025-54551 - Synapse Mobility Web Parameter Privilege Escalation

CVE ID : CVE-2025-54551
Published : Aug. 20, 2025, 5:15 a.m. | 2 hours, 57 minutes ago
Description : Synapse Mobility 8.0, 8.0.1, 8.0.2, 8.1, and 8.1.1 contain a privilege escalation vulnerability through external control of Web parameter. If exploited, a user of the product may escalate the privilege and access data that the user do not have permission to view by altering the parameters of the search function.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 05:15:00 GMT

read more

CVE-2025-55706 - Movable Type Open Redirect

CVE ID : CVE-2025-55706
Published : Aug. 20, 2025, 5:15 a.m. | 2 hours, 57 minutes ago
Description : URL redirection to untrusted site ('Open Redirect') issue exists in Movable Type. If this vulnerability is exploited, an invalid parameter may be inserted into the password reset page, which may lead to redirection to an arbitrary URL.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 05:15:00 GMT

read more

CVE-2025-8618 - "WPC Smart Quick View for WooCommerce Stored Cross-Site Scripting Vulnerability"

CVE ID : CVE-2025-8618
Published : Aug. 20, 2025, 5:15 a.m. | 2 hours, 57 minutes ago
Description : The WPC Smart Quick View for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's woosq_btn shortcode in all versions up to, and including, 4.2.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Severity: 6.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 05:15:00 GMT

read more

CVE-2025-57742 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-57742
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57743 - Adobe Acrobat Out-of-bounds Read

CVE ID : CVE-2025-57743
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57744 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-57744
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57745 - Cisco Router Unvalidated Input

CVE ID : CVE-2025-57745
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57746 - Microsoft Azure Active Directory Authentication Bypass

CVE ID : CVE-2025-57746
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57747 - Apache HTTP Server Unvalidated User Input

CVE ID : CVE-2025-57747
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57748 - Apache HTTP Server Local File Inclusion

CVE ID : CVE-2025-57748
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57788 - Commvault Unauthenticated API Execution Vulnerability

CVE ID : CVE-2025-57788
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : An issue was discovered in Commvault before 11.36.60. A vulnerability in a known login mechanism allows unauthenticated attackers to execute API calls without requiring user credentials. RBAC helps limit the exposure but does not eliminate risk.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57789 - Commvault Default Credential Exposure Vulnerability

CVE ID : CVE-2025-57789
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : An issue was discovered in Commvault before 11.36.60. During the brief window between installation and the first administrator login, remote attackers may exploit the default credential to gain admin control. This is limited to the setup phase, before any jobs have been configured.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57790 - Commvault Path Traversal Remote Code Execution Vulnerability

CVE ID : CVE-2025-57790
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : An issue was discovered in Commvault before 11.36.60. A security vulnerability has been identified that allows remote attackers to perform unauthorized file system access through a path traversal issue. The vulnerability may lead to remote code execution.
Severity: 8.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-57791 - Commvault Command Injection Vulnerability

CVE ID : CVE-2025-57791
Published : Aug. 20, 2025, 4:16 a.m. | 3 hours, 57 minutes ago
Description : An issue was discovered in Commvault before 11.36.60. A security vulnerability has been identified that allows remote attackers to inject or manipulate command-line arguments passed to internal components due to insufficient input validation. Successful exploitation results in a valid user session for a low privilege role.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 04:16:00 GMT

read more

CVE-2025-54363 - Microsoft Knack Regular Expression Denial of Service (ReDoS)

CVE ID : CVE-2025-54363
Published : Aug. 20, 2025, 3:15 a.m. | 4 hours, 57 minutes ago
Description : Microsoft Knack 0.12.0 allows Regular expression Denial of Service (ReDoS) in the knack.introspection module (issue 1 of 2).
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 03:15:00 GMT

read more

CVE-2025-54364 - Microsoft Knack Regular Expression Denial of Service (ReDoS)

CVE ID : CVE-2025-54364
Published : Aug. 20, 2025, 3:15 a.m. | 4 hours, 57 minutes ago
Description : Microsoft Knack 0.12.0 allows Regular expression Denial of Service (ReDoS) in the knack.introspection module (issue 2 of 2).
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 03:15:00 GMT

read more

CVE-2025-8141 - "WordPress Contact Form 7 Plugin Arbitrary File Deletion Vulnerability"

CVE ID : CVE-2025-8141
Published : Aug. 20, 2025, 3:15 a.m. | 4 hours, 57 minutes ago
Description : The Redirection for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_associated_files function in all versions up to, and including, 3.2.4. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 03:15:00 GMT

read more

CVE-2025-8145 - "Contact Form 7 PHP Object Injection and RCE Vulnerability"

CVE ID : CVE-2025-8145
Published : Aug. 20, 2025, 3:15 a.m. | 4 hours, 57 minutes ago
Description : The Redirection for Contact Form 7 plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.2.4 via deserialization of untrusted input in the get_lead_fields function. This makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain in a Contact Form 7 plugin allows attackers to delete arbitrary files. Additionally, in certain server configurations, Remote Code Execution is possible
Severity: 8.8 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 03:15:00 GMT

read more

CVE-2025-8289 - "WordPress Redirection for Contact Form 7 PHP Object Injection Vulnerability"

CVE ID : CVE-2025-8289
Published : Aug. 20, 2025, 3:15 a.m. | 4 hours, 57 minutes ago
Description : The Redirection for Contact Form 7 plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.2.4 via deserialization of untrusted input in the delete_associated_files function. This makes it possible for unauthenticated attackers to inject a PHP Object. This vulnerability may be exploited by unauthenticated attackers when a form is present on the site with a file upload action, and doesn't affect sites with PHP version > 8. This vulnerability also requires the 'Redirection For Contact Form 7 Extension - Create Post' extension to be installed and activated in order to be exploited. No known POP chain is present in the vulnerable software, which means this vulnerability has no impact unless another plugin or theme containing a POP chain is installed on the site. If a POP chain is present via an additional plugin or theme installed on the target system, it may allow the attacker to perform actions like delete arbitrary files, retrieve sensitive data, or execute code depending on the POP chain present. We confirmed there is a usable gadget in Contact Form 7 plugin that makes arbitrary file deletion possible when installed with this plugin. Given Contact Form 7 is a requirement of this plugin, it is likely that any site with this plugin and the 'Redirection For Contact Form 7 Extension - Create Post' extension enabled is vulnerable to arbitrary file deletion.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 03:15:00 GMT

read more

CVE-2024-12223 - Palo Alto Networks Prism Central Stored Cross-Site Scripting Vulnerability

CVE ID : CVE-2024-12223
Published : Aug. 20, 2025, 1:15 a.m. | 6 hours, 57 minutes ago
Description : Prism Central versions prior to 2024.3.1 are vulnerable to a stored cross-site scripting attack via the Events component, allowing an attacker to hijack a victim user’s session and perform actions in their security context.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 01:15:00 GMT

read more

CVE-2025-9132 - Google Chrome V8 Out-of-Bounds Heap Corruption Vulnerability

CVE ID : CVE-2025-9132
Published : Aug. 20, 2025, 1:15 a.m. | 6 hours, 57 minutes ago
Description : Out of bounds write in V8 in Google Chrome prior to 139.0.7258.138 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 01:15:00 GMT

read more

CVE-2025-9176 - Neurobin shc OS Command Injection Vulnerability

CVE ID : CVE-2025-9176
Published : Aug. 20, 2025, 12:15 a.m. | 7 hours, 57 minutes ago
Description : A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the public and may be exploited.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 00:15:00 GMT

read more

CVE-2025-9193 - TOTVS Portal Meu RH Open Redirect Vulnerability

CVE ID : CVE-2025-9193
Published : Aug. 20, 2025, 12:15 a.m. | 7 hours, 57 minutes ago
Description : A flaw has been found in TOTVS Portal Meu RH up to 12.1.17. Impacted is an unknown function of the component Password Reset Handler. Executing manipulation of the argument redirectUrl can lead to open redirect. The attack may be performed from a remote location. The exploit has been published and may be used. Upgrading to version 12.1.2410.274, 12.1.2502.178 and 12.1.2506.121 is recommended to address this issue. It is recommended to upgrade the affected component. The vendor explains, that "[o]ur internal validation (...) confirms that the reported behavior does not exist in currently supported releases. In these tests, the redirectUrl parameter is ignored, and no malicious redirection occurs." This vulnerability only affects products that are no longer supported by the maintainer.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Wed, 20 Aug 2025 00:15:00 GMT

read more

CVE-2025-9175 - Neurobin SHC Stack-Based Buffer Overflow

CVE ID : CVE-2025-9175
Published : Aug. 19, 2025, 11:15 p.m. | 7 hours, 46 minutes ago
Description : A vulnerability was identified in neurobin shc up to 4.0.3. This issue affects the function make of the file src/shc.c. The manipulation leads to stack-based buffer overflow. The attack can only be performed from a local environment. The exploit is publicly available and might be used.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 23:15:00 GMT

read more

CVE-2025-9171 - SolidInvoice Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9171
Published : Aug. 19, 2025, 11:15 p.m. | 5 hours, 27 minutes ago
Description : A security flaw has been discovered in SolidInvoice up to 2.4.0. The impacted element is an unknown function of the file /clients of the component Clients Module. Performing manipulation of the argument Name results in cross site scripting. The attack is possible to be carried out remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 23:15:00 GMT

read more

CVE-2025-9174 - Neurobin Shc OS Command Injection Vulnerability

CVE ID : CVE-2025-9174
Published : Aug. 19, 2025, 11:15 p.m. | 5 hours, 27 minutes ago
Description : A vulnerability was determined in neurobin shc up to 4.0.3. This vulnerability affects the function make of the file src/shc.c of the component Filename Handler. Executing manipulation can lead to os command injection. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 23:15:00 GMT

read more

CVE-2025-9169 - SolidInvoice Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9169
Published : Aug. 19, 2025, 10:15 p.m. | 6 hours, 27 minutes ago
Description : A vulnerability was determined in SolidInvoice up to 2.4.0. Impacted is an unknown function of the file /quotes of the component Quote Module. This manipulation of the argument Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 22:15:00 GMT

read more

CVE-2025-9170 - SolidInvoice Tax Rates Module Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9170
Published : Aug. 19, 2025, 10:15 p.m. | 6 hours, 27 minutes ago
Description : A vulnerability was identified in SolidInvoice up to 2.4.0. The affected element is an unknown function of the file /tax/rates of the component Tax Rates Module. Such manipulation of the argument Name leads to cross site scripting. The attack can be executed remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 22:15:00 GMT

read more

CVE-2025-9167 - SolidInvoice Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9167
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : A vulnerability has been found in SolidInvoice up to 2.4.0. This vulnerability affects unknown code of the file /invoice/recurring of the component Recurring Invoice Module. The manipulation of the argument client name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9168 - SolidInvoice Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9168
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : A vulnerability was found in SolidInvoice up to 2.4.0. This issue affects some unknown processing of the file /invoice of the component Invoice Creation Module. The manipulation of the argument Client Name results in cross site scripting. The attack may be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9179 - "Firefox/Thunderbird GMP Memory Corruption Vulnerability"

CVE ID : CVE-2025-9179
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : An attacker was able to perform memory corruption in the GMP process which processes encrypted media. This process is also heavily sandboxed, but represents slightly different privileges from the content process. This vulnerability affects Firefox < 142, Firefox ESR < 115.27, Firefox ESR < 128.14, Firefox ESR < 140.2, Thunderbird < 142, Thunderbird < 128.14, and Thunderbird < 140.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9180 - "Firefox/Thunderbird Same-Origin Policy Bypass in Graphics: Canvas2D"

CVE ID : CVE-2025-9180
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : 'Same-origin policy bypass in the Graphics: Canvas2D component.' This vulnerability affects Firefox < 142, Firefox ESR < 115.27, Firefox ESR < 128.14, Firefox ESR < 140.2, Thunderbird < 142, Thunderbird < 128.14, and Thunderbird < 140.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9181 - Mozilla Firefox JavaScript Engine Uninitialized Memory Vulnerability

CVE ID : CVE-2025-9181
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : Uninitialized memory in the JavaScript Engine component. This vulnerability affects Firefox < 142, Firefox ESR < 128.14, Firefox ESR < 140.2, Thunderbird < 142, Thunderbird < 128.14, and Thunderbird < 140.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9182 - "Firefox WebRender Denial-of-Service Vulnerability"

CVE ID : CVE-2025-9182
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : 'Denial-of-service due to out-of-memory in the Graphics: WebRender component.' This vulnerability affects Firefox < 142, Firefox ESR < 140.2, Thunderbird < 142, and Thunderbird < 140.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9183 - Firefox Spoofing Address Bar Vulnerability

CVE ID : CVE-2025-9183
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : Spoofing issue in the Address Bar component. This vulnerability affects Firefox < 142 and Firefox ESR < 140.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9184 - Firefox/Thunderbird Memory Corruption Vulnerability

CVE ID : CVE-2025-9184
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : Memory safety bugs present in Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 142, Firefox ESR < 140.2, Thunderbird < 142, and Thunderbird < 140.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9185 - Mozilla Firefox/Thunderbird Memory Corruption Vulnerabilities

CVE ID : CVE-2025-9185
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : Memory safety bugs present in Firefox ESR 115.26, Firefox ESR 128.13, Thunderbird ESR 128.13, Firefox ESR 140.1, Thunderbird ESR 140.1, Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 142, Firefox ESR < 115.27, Firefox ESR < 128.14, Firefox ESR < 140.2, Thunderbird < 142, Thunderbird < 128.14, and Thunderbird < 140.2.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9186 - Firefox Focus for Android URL Spoofing Vulnerability

CVE ID : CVE-2025-9186
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : Spoofing issue in the Address Bar component of Firefox Focus for Android. This vulnerability affects Firefox < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9187 - Firefox Memory Corruption Vulnerability

CVE ID : CVE-2025-9187
Published : Aug. 19, 2025, 9:15 p.m. | 6 hours, 28 minutes ago
Description : Memory safety bugs present in Firefox 141 and Thunderbird 141. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 142 and Thunderbird < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-55032 - Focus for iOS MIME Type Vulnerability

CVE ID : CVE-2025-55032
Published : Aug. 19, 2025, 9:15 p.m. | 5 hours, 42 minutes ago
Description : Focus for iOS would not respect a Content-Disposition header of type Attachment and would incorrectly display the content inline, potentially allowing for XSS attacks This vulnerability affects Focus for iOS < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-55033 - Focus for iOS JavaScript Injection Vulnerability

CVE ID : CVE-2025-55033
Published : Aug. 19, 2025, 9:15 p.m. | 5 hours, 42 minutes ago
Description : Dragging JavaScript links to the URL bar in Focus for iOS could be utilized to run malicious scripts, potentially resulting in XSS attacks This vulnerability affects Focus for iOS < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-8041 - Firefox for Android URL Truncation Vulnerability

CVE ID : CVE-2025-8041
Published : Aug. 19, 2025, 9:15 p.m. | 5 hours, 42 minutes ago
Description : In the address bar, Firefox for Android truncated the display of URLs from the end instead of prioritizing the origin. This vulnerability affects Firefox < 141.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-8042 - Firefox for Android Cross-Site Download Vulnerability

CVE ID : CVE-2025-8042
Published : Aug. 19, 2025, 9:15 p.m. | 5 hours, 42 minutes ago
Description : Firefox for Android allowed a sandboxed iframe without the `allow-downloads` attribute to start downloads. This vulnerability affects Firefox < 141.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-8364 - Mozilla Firefox Android URI Spoofing Vulnerability

CVE ID : CVE-2025-8364
Published : Aug. 19, 2025, 9:15 p.m. | 5 hours, 42 minutes ago
Description : A crafted URL using a blob: URI could have hidden the true origin of the page, resulting in a potential spoofing attack. *Note: This issue only affected Android operating systems. Other operating systems are unaffected.* This vulnerability affects Firefox < 141.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-55030 - Firefox for iOS MIME Type Misinterpretation Vulnerability

CVE ID : CVE-2025-55030
Published : Aug. 19, 2025, 9:15 p.m. | 3 hours, 54 minutes ago
Description : Firefox for iOS would not respect a Content-Disposition header of type Attachment and would incorrectly display the content inline rather than downloading, potentially allowing for XSS attacks This vulnerability affects Firefox for iOS < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-55031 - Firefox for iOS Bluetooth Hybrid Passkey Transport Vulnerability

CVE ID : CVE-2025-55031
Published : Aug. 19, 2025, 9:15 p.m. | 3 hours, 54 minutes ago
Description : Malicious pages could use Firefox for iOS to pass FIDO: links to the OS and trigger the hybrid passkey transport. An attacker within Bluetooth range could have used this to trick the user into using their passkey to log the attacker's computer into the target account. This vulnerability affects Firefox for iOS < 142 and Focus for iOS < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-54143 - Mozilla Firefox for iOS Cross-Site Download

CVE ID : CVE-2025-54143
Published : Aug. 19, 2025, 9:15 p.m. | 57 minutes ago
Description : Sandboxed iframes on webpages could potentially allow downloads to the device, bypassing the expected sandbox restrictions declared on the parent page This vulnerability affects Firefox for iOS < 141.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-54144 - "Firefox for iOS URL Scheme Clickjacking Vulnerability"

CVE ID : CVE-2025-54144
Published : Aug. 19, 2025, 9:15 p.m. | 57 minutes ago
Description : The URL scheme used by Firefox to facilitate searching of text queries could incorrectly allow attackers to open arbitrary website URLs or internal pages if a user was tricked into clicking a link This vulnerability affects Firefox for iOS < 141.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-54145 - Firefox for iOS QR Scanner Code Injection Vulnerability

CVE ID : CVE-2025-54145
Published : Aug. 19, 2025, 9:15 p.m. | 57 minutes ago
Description : The QR scanner could allow arbitrary websites to be opened if a user was tricked into scanning a malicious link that leveraged Firefox's open-text URL scheme This vulnerability affects Firefox for iOS < 141.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-55028 - Firefox for iOS JavaScript Alert Denial of Service

CVE ID : CVE-2025-55028
Published : Aug. 19, 2025, 9:15 p.m. | 57 minutes ago
Description : Malicious scripts utilizing repetitive JavaScript alerts could prevent client user interaction in some scenarios and allow for denial of service attacks This vulnerability affects Firefox for iOS < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-55029 - Firefox for iOS Script Injection Vulnerability

CVE ID : CVE-2025-55029
Published : Aug. 19, 2025, 9:15 p.m. | 57 minutes ago
Description : Malicious scripts could bypass the popup blocker to spam new tabs, potentially resulting in denial of service attacks This vulnerability affects Firefox for iOS < 142.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 21:15:00 GMT

read more

CVE-2025-9157 - Appneta Tcpreplay Use After Free Vulnerability

CVE ID : CVE-2025-9157
Published : Aug. 19, 2025, 8:15 p.m. | 1 hour, 56 minutes ago
Description : A vulnerability was determined in appneta tcpreplay up to 4.5.2-beta2. The impacted element is the function untrunc_packet of the file src/tcpedit/edit_packet.c of the component tcprewrite. Executing manipulation can lead to use after free. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. This patch is called 73008f261f1cdf7a1087dc8759115242696d35da. Applying a patch is advised to resolve this issue.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-9165 - LibTIFF Memory Leak Vulnerability

CVE ID : CVE-2025-9165
Published : Aug. 19, 2025, 8:15 p.m. | 1 hour, 56 minutes ago
Description : A flaw has been found in LibTIFF 4.7.0. This affects the function _TIFFmallocExt/_TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c of the component tiffcmp. Executing manipulation can lead to memory leak. The attack is restricted to local execution. The exploit has been published and may be used. This patch is called ed141286a37f6e5ddafb5069347ff5d587e7a4e0. It is best practice to apply a patch to resolve this issue.
Severity: 4.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-2988 - IBM Sterling B2B Integrator and IBM Sterling File Gateway Information Disclosure

CVE ID : CVE-2025-2988
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7, 6.2.0.0 through 6.2.0.4, and 6.2.1.0 could disclose sensitive server information to an unauthorized user that could aid in further attacks against the system.
Severity: 2.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-43743 - Liferay Portal Information Disclosure

CVE ID : CVE-2025-43743
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.5, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15 and 7.4 GA through update 92 allows any authenticated remote user to view other calendars by allowing them to enumerate the names of other users, given an attacker the possibility to send phishing to these users.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-43744 - Liferay Portal Stored DOM-Based XSS Vulnerability

CVE ID : CVE-2025-43744
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : A stored DOM-based Cross-Site Scripting (XSS) vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.5, 2025.Q1.0 through 2025.Q1.15, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.19 and 7.4 GA through update 92 exists in the Asset Publisher configuration UI within the Source.js module. This vulnerability allows attackers to inject arbitrary JavaScript via DDM structure field labels which are then inserted into the DOM using innerHTML without proper encoding.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-50926 - Easy Hosting Control Panel EHCP SQL Injection Vulnerability

CVE ID : CVE-2025-50926
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : Easy Hosting Control Panel EHCP v20.04.1.b was discovered to contain a SQL injection vulnerability via the id parameter in the List All Email Addresses function.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-51543 - Cicool Builder Password Reset Vulnerability

CVE ID : CVE-2025-51543
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : An issue was discovered in Cicool builder 3.4.4 allowing attackers to reset the administrator's password via the /administrator/auth/reset_password endpoint.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-52337 - LogicData eCommerce Framework File Upload RCE

CVE ID : CVE-2025-52337
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : An authenticated arbitrary file upload vulnerability in the Content Explorer feature of LogicData eCommerce Framework v5.0.9.7000 allows attackers to execute arbitrary code via uploading a crafted file.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-55737 - "FlaskBlog Comment Deletion Privilege Escalation Vulnerability"

CVE ID : CVE-2025-55737
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : flaskBlog is a blog app built with Flask. In 2.8.0 and earlier, when deleting a comment, there's no validation of the ownership of the comment. Every user can delete an arbitrary comment of another user on every post, by simply intercepting the delete request and changing the commentID. The code that causes the problem is in routes/post.py.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-55740 - Ngix-Defender Default Credentials Exposure Vulnerability

CVE ID : CVE-2025-55740
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : nginx-defender is a high-performance, enterprise-grade Web Application Firewall (WAF) and threat detection system engineered for modern web infrastructure. This is a configuration vulnerability affecting nginx-defender deployments. Example configuration files config.yaml and docker-compose.yml contain default credentials (default_password: "change_me_please", GF_SECURITY_ADMIN_PASSWORD=admin123). If users deploy nginx-defender without changing these defaults, attackers with network access could gain administrative control, bypassing security protections. The issue is addressed in v1.5.0 and later.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-9155 - iSourcecode Online Tour and Travel Management System SQL Injection Vulnerability

CVE ID : CVE-2025-9155
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : A vulnerability has been found in itsourcecode Online Tour and Travel Management System 1.0. Impacted is an unknown function of the file /user/forget_password.php. Such manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-9156 - iSourcecode Sports Management System SQL Injection

CVE ID : CVE-2025-9156
Published : Aug. 19, 2025, 8:15 p.m. | 37 minutes ago
Description : A vulnerability was found in itsourcecode Sports Management System 1.0. The affected element is an unknown function of the file /Admin/sports.php. Performing manipulation of the argument code results in sql injection. Remote exploitation of the attack is possible. The exploit has been made public and could be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 20:15:00 GMT

read more

CVE-2025-33008 - IBM Sterling B2B Integrator Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-33008
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : IBM Sterling B2B Integrator 6.2.1.0 and IBM Sterling File Gateway 6.2.1.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Severity: 5.4 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-43737 - Liferay Portal Liferay DXP Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-43737
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.8 and 2025.Q1.0 through 2025.Q1.15 allows a remote authenticated user to inject JavaScript code via _com_liferay_journal_web_portlet_JournalPortlet_backURL parameter.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-43745 - Liferay Portal CSRF Attack

CVE ID : CVE-2025-43745
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : A CSRF vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025.Q2.7, 2025.Q1.0 through 2025.Q1.14, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.19 and 7.4 GA through update 92 allows remote attackers to performs cross-origin request on behalf of the authenticated user via the endpoint parameter.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-50891 - Adform Site Tracking Cross-Site Scripting (XSS)

CVE ID : CVE-2025-50891
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : Adform Site Tracking 1.1 allows attackers to inject HTML or execute arbitrary code via cookie hijacking.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-52338 - LogicData eCommerce Framework Authentication Bypass

CVE ID : CVE-2025-52338
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : An issue in the default configuration of the password reset function in LogicData eCommerce Framework v5.0.9.7000 allows attackers to bypass authentication and compromise user accounts via a bruteforce attack.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-55303 - Astro Image Optimization Endpoint Protocol-Relative URL Injection

CVE ID : CVE-2025-55303
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : Astro is a web framework for content-driven websites. In versions of astro before 5.13.2 and 4.16.18, the image optimization endpoint in projects deployed with on-demand rendering allows images from unauthorized third-party domains to be served. On-demand rendered sites built with Astro include an /_image endpoint which returns optimized versions of images. A bug in impacted versions of astro allows an attacker to bypass the third-party domain restrictions by using a protocol-relative URL as the image source, e.g. /_image?href=//example.com/image.png. This vulnerability is fixed in 5.13.2 and 4.16.18.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-55306 - GenX FX Exposed API Keys and Authentication Tokens

CVE ID : CVE-2025-55306
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : GenX_FX is an advance IA trading platform that will focus on forex trading. A vulnerability was identified in the GenX FX backend where API keys and authentication tokens may be exposed if environment variables are misconfigured. Unauthorized users could gain access to cloud resources (Google Cloud, Firebase, GitHub, etc.).
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-55733 - DeepChat Custom URL Handler Remote Code Execution Vulnerability

CVE ID : CVE-2025-55733
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : DeepChat is a smart assistant that connects powerful AI to your personal world. DeepChat before 0.3.1 has a one-click remote code execution vulnerability. An attacker can exploit this vulnerability by embedding a specially crafted deepchat: URL on any website, including a malicious one they control. When a victim visits such a site or clicks on the link, the browser triggers the app’s custom URL handler (deepchat:), causing the DeepChat application to launch and process the URL, leading to remote code execution on the victim’s machine. This vulnerability is fixed in 0.3.1.
Severity: 9.6 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-55734 - FlaskBlog Unauthenticated Access to Sensitive Pages

CVE ID : CVE-2025-55734
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : flaskBlog is a blog app built with Flask. In 2.8.0 and earlier, the code checks if the userRole is "admin" only when visiting the /admin page, but not when visiting its subroutes. Specifically, only the file routes/adminPanel.py checks the user role when a user is trying to access the admin page, but that control is not done for the pages routes/adminPanelComments.py and routes/adminPanelPosts.py. Thus, an unauthorized user can bypass the intended restrictions, leaking sensitive data and accessing the following pages: /admin/posts, /adminpanel/posts, /admin/comments, and /adminpanel/comments.
Severity: 6.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-55735 - FlaskBlog Stored XSS Vulnerability

CVE ID : CVE-2025-55735
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : flaskBlog is a blog app built with Flask. In 2.8.0 and earlier, when creating a post, there's no validation of the content of the post stored in the variable "postContent". The vulnerability arises when displaying the content of the post using the | safe filter, that tells the engine to not escape the rendered content. This can lead to a stored XSS inside the content of the post. The code that causes the problem is in template/routes.html.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-55736 - FlaskBlog Role Elevation Vulnerability

CVE ID : CVE-2025-55736
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : flaskBlog is a blog app built with Flask. In 2.8.0 and earlier, an arbitrary user can change his role to "admin", giving its relative privileges (e.g. delete users, posts, comments etc.). The problem is in the routes/adminPanelUsers file.
Severity: 9.3 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-9153 - iSourcecode Online Tour and Travel Management System File Upload Vulnerability

CVE ID : CVE-2025-9153
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : A vulnerability was detected in itsourcecode Online Tour and Travel Management System 1.0. This vulnerability affects unknown code of the file /admin/operations/travellers.php. The manipulation of the argument photo results in unrestricted upload. The attack can be launched remotely. The exploit is now public and may be used.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-9154 - iSourcecode Online Tour and Travel Management System SQL Injection

CVE ID : CVE-2025-9154
Published : Aug. 19, 2025, 7:15 p.m. | 1 hour, 37 minutes ago
Description : A flaw has been found in itsourcecode Online Tour and Travel Management System 1.0. This issue affects some unknown processing of the file /user/page-login.php. This manipulation of the argument email causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2024-44373 - AllSky Path Traversal Web Shell RCE

CVE ID : CVE-2024-44373
Published : Aug. 19, 2025, 7:15 p.m. | 52 minutes ago
Description : A Path Traversal vulnerability in AllSky v2023.05.01_04 allows an unauthenticated attacker to create a webshell and remote code execution via the path, content parameter to /includes/save_file.php.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-31988 - HCL Digital Experience Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-31988
Published : Aug. 19, 2025, 7:15 p.m. | 52 minutes ago
Description : HCL Digital Experience is susceptible to cross site scripting (XSS) in an administrative UI with restricted access.
Severity: 4.9 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 19:15:00 GMT

read more

CVE-2025-55153 - Apache HTTP Server XML Entity Injection

CVE ID : CVE-2025-55153
Published : Aug. 19, 2025, 6:15 p.m. | 1 hour, 52 minutes ago
Description : Rejected reason: This CVE is a duplicate of another CVE.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 18:15:00 GMT

read more

CVE-2025-55294 - "Screenshot-Desktop Command Injection Vulnerability"

CVE ID : CVE-2025-55294
Published : Aug. 19, 2025, 6:15 p.m. | 1 hour, 52 minutes ago
Description : screenshot-desktop allows capturing a screenshot of your local machine. This vulnerability is a command injection issue. When user-controlled input is passed into the format option of the screenshot function, it is interpolated into a shell command without sanitization. This results in arbitrary command execution with the privileges of the calling process. This vulnerability is fixed in 1.15.2.
Severity: 9.8 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 18:15:00 GMT

read more

CVE-2025-55295 - qBit Manage Path Traversal Vulnerability

CVE ID : CVE-2025-55295
Published : Aug. 19, 2025, 6:15 p.m. | 1 hour, 52 minutes ago
Description : qBit Manage is a tool that helps manage tedious tasks in qBittorrent and automate them. A path traversal vulnerability exists in qbit_manage's web API that allows authenticated users to read arbitrary files from the server filesystem through the restore_config_from_backup endpoint. The vulnerability allows attackers to bypass directory restrictions and read arbitrary files from the server filesystem by manipulating the backup_id parameter with path traversal sequences (e.g., ../). This vulnerability is fixed in 4.5.4.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 18:15:00 GMT

read more

CVE-2025-8450 - Fortra FileCatalyst Unauthenticated File Upload Vulnerability

CVE ID : CVE-2025-8450
Published : Aug. 19, 2025, 6:15 p.m. | 1 hour, 52 minutes ago
Description : Improper Access Control issue in the Workflow component of Fortra's FileCatalyst allows unauthenticated users to upload arbitrary files via the order forms page.
Severity: 8.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 18:15:00 GMT

read more

CVE-2025-9149 - Wavlink Wireless.cgi Command Injection

CVE ID : CVE-2025-9149
Published : Aug. 19, 2025, 6:15 p.m. | 1 hour, 52 minutes ago
Description : A vulnerability was determined in Wavlink WL-NU516U1 M16U1_V240425. This impacts the function sub_4032E4 of the file /cgi-bin/wireless.cgi. This manipulation of the argument Guest_ssid causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 18:15:00 GMT

read more

CVE-2025-9150 - Surbowl Dormitory-Management-Php SQL Injection

CVE ID : CVE-2025-9150
Published : Aug. 19, 2025, 6:15 p.m. | 1 hour, 52 minutes ago
Description : A vulnerability was identified in Surbowl dormitory-management-php up to 9f1d9d1f528cabffc66fda3652c56ff327fda317. Affected is an unknown function of the file /admin/violation_add.php?id=2. Such manipulation of the argument ID leads to sql injection. The attack may be performed from a remote location. The exploit is publicly available and might be used. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. This vulnerability only affects products that are no longer supported by the maintainer.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 18:15:00 GMT

read more

CVE-2025-9151 - LiuYuYang01 ThriveX-Blog Remote Unauthorized Access Vulnerability

CVE ID : CVE-2025-9151
Published : Aug. 19, 2025, 6:15 p.m. | 1 hour, 52 minutes ago
Description : A security flaw has been discovered in LiuYuYang01 ThriveX-Blog up to 3.1.7. Affected by this vulnerability is the function updateJsonValueByName of the file /web_config/json/name/web. Performing manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 18:15:00 GMT

read more

CVE-2025-54881 - Mermaid Sequence Diagram Label XSS

CVE ID : CVE-2025-54881
Published : Aug. 19, 2025, 5:15 p.m. | 2 hours, 52 minutes ago
Description : Mermaid is a JavaScript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. In the default configuration of mermaid 10.9.0-rc.1 to 11.9.0, user supplied input for sequence diagram labels is passed to innerHTML during calculation of element size, causing XSS.
Severity: 5.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-9147 - JasonClark GetSemantic Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-9147
Published : Aug. 19, 2025, 5:15 p.m. | 2 hours, 52 minutes ago
Description : A vulnerability has been found in jasonclark getsemantic up to 040c96eb8cf9947488bd01b8de99b607b0519f7d. The impacted element is an unknown function of the file /index.php. The manipulation of the argument view leads to cross site scripting. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 5.1 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-9148 - CodePhiliaX Chat2DB JDBC Connection Handler SQL Injection Vulnerability

CVE ID : CVE-2025-9148
Published : Aug. 19, 2025, 5:15 p.m. | 2 hours, 52 minutes ago
Description : A vulnerability was found in CodePhiliaX Chat2DB up to 0.3.7. This affects an unknown function of the file ai/chat2db/server/web/api/controller/data/source/DataSourceController.java of the component JDBC Connection Handler. The manipulation results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Severity: 6.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38605 - "Qualcomm ath12k Wi-Fi Kernel Panic Vulnerability"

CVE ID : CVE-2025-38605
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Pass ab pointer directly to ath12k_dp_tx_get_encap_type() In ath12k_dp_tx_get_encap_type(), the arvif parameter is only used to retrieve the ab pointer. In vdev delete sequence the arvif->ar could become NULL and that would trigger kernel panic. Since the caller ath12k_dp_tx() already has a valid ab pointer, pass it directly to avoid panic and unnecessary dereferencing. PC points to "ath12k_dp_tx+0x228/0x988 [ath12k]" LR points to "ath12k_dp_tx+0xc8/0x988 [ath12k]". The Backtrace obtained is as follows: ath12k_dp_tx+0x228/0x988 [ath12k] ath12k_mac_tx_check_max_limit+0x608/0x920 [ath12k] ieee80211_process_measurement_req+0x320/0x348 [mac80211] ieee80211_tx_dequeue+0x9ac/0x1518 [mac80211] ieee80211_tx_dequeue+0xb14/0x1518 [mac80211] ieee80211_tx_prepare_skb+0x224/0x254 [mac80211] ieee80211_xmit+0xec/0x100 [mac80211] __ieee80211_subif_start_xmit+0xc50/0xf40 [mac80211] ieee80211_subif_start_xmit+0x2e8/0x308 [mac80211] netdev_start_xmit+0x150/0x18c dev_hard_start_xmit+0x74/0xc0 Tested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.3.1-00173-QCAHKSWPL_SILICONZ-1
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38606 - Linux Kernel WiFi ath12k: Null Pointer Deref in Beacon Miss Handling

CVE ID : CVE-2025-38606
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid accessing uninitialized arvif->ar during beacon miss During beacon miss handling, ath12k driver iterates over active virtual interfaces (vifs) and attempts to access the radio object (ar) via arvif->deflink->ar. However, after commit aa80f12f3bed ("wifi: ath12k: defer vdev creation for MLO"), arvif is linked to a radio only after vdev creation, typically when a channel is assigned or a scan is requested. For P2P capable devices, a default P2P interface is created by wpa_supplicant along with regular station interfaces, these serve as dummy interfaces for P2P-capable stations, lack an associated netdev and initiate frequent scans to discover neighbor p2p devices. When a scan is initiated on such P2P vifs, driver selects destination radio (ar) based on scan frequency, creates a scan vdev, and attaches arvif to the radio. Once the scan completes or is aborted, the scan vdev is deleted, detaching arvif from the radio and leaving arvif->ar uninitialized. While handling beacon miss for station interfaces, P2P interface is also encountered in the vif iteration and ath12k_mac_handle_beacon_miss_iter() tries to dereference the uninitialized arvif->deflink->ar. Fix this by verifying that vdev is created for the arvif before accessing its ar during beacon miss handling and similar vif iterator callbacks. ========================================================================== wlp6s0: detected beacon loss from AP (missed 7 beacons) - probing KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017] CPU: 5 UID: 0 PID: 0 Comm: swapper/5 Not tainted 6.16.0-rc1-wt-ath+ #2 PREEMPT(full) RIP: 0010:ath12k_mac_handle_beacon_miss_iter+0xb5/0x1a0 [ath12k] Call Trace: __iterate_interfaces+0x11a/0x410 [mac80211] ieee80211_iterate_active_interfaces_atomic+0x61/0x140 [mac80211] ath12k_mac_handle_beacon_miss+0xa1/0xf0 [ath12k] ath12k_roam_event+0x393/0x560 [ath12k] ath12k_wmi_op_rx+0x1486/0x28c0 [ath12k] ath12k_htc_process_trailer.isra.0+0x2fb/0x620 [ath12k] ath12k_htc_rx_completion_handler+0x448/0x830 [ath12k] ath12k_ce_recv_process_cb+0x549/0x9e0 [ath12k] ath12k_ce_per_engine_service+0xbe/0xf0 [ath12k] ath12k_pci_ce_workqueue+0x69/0x120 [ath12k] process_one_work+0xe3a/0x1430 Tested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1 Tested-on: WCN7850 hw2.0 PCI WLAN.HMT.1.1.c5-00284.1-QCAHMTSWPL_V1.0_V2.0_SILICONZ-3
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38607 - Linux Kernel BPF Conditional Jump Vulnerability

CVE ID : CVE-2025-38607
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: bpf: handle jset (if a & b ...) as a jump in CFG computation BPF_JSET is a conditional jump and currently verifier.c:can_jump() does not know about that. This can lead to incorrect live registers and SCC computation. E.g. in the following example: 1: r0 = 1; 2: r2 = 2; 3: if r1 & 0x7 goto +1; 4: exit; 5: r0 = r2; 6: exit; W/o this fix insn_successors(3) will return only (4), a jump to (5) would be missed and r2 won't be marked as alive at (3).
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38608 - Linux Kernel ktls Uninitialized Data Corruption

CVE ID : CVE-2025-38608
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls When sending plaintext data, we initially calculated the corresponding ciphertext length. However, if we later reduced the plaintext data length via socket policy, we failed to recalculate the ciphertext length. This results in transmitting buffers containing uninitialized data during ciphertext transmission. This causes uninitialized bytes to be appended after a complete "Application Data" packet, leading to errors on the receiving end when parsing TLS record.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38609 - Linux Kernel Null Pointer Dereference in devfreq Governor

CVE ID : CVE-2025-38609
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Check governor before using governor->name Commit 96ffcdf239de ("PM / devfreq: Remove redundant governor_name from struct devfreq") removes governor_name and uses governor->name to replace it. But devfreq->governor may be NULL and directly using devfreq->governor->name may cause null pointer exception. Move the check of governor to before using governor->name.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38610 - Linux Powercap DTPM CPU NULL Pointer Dereference

CVE ID : CVE-2025-38610
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: powercap: dtpm_cpu: Fix NULL pointer dereference in get_pd_power_uw() The get_pd_power_uw() function can crash with a NULL pointer dereference when em_cpu_get() returns NULL. This occurs when a CPU becomes impossible during runtime, causing get_cpu_device() to return NULL, which propagates through em_cpu_get() and leads to a crash when em_span_cpus() dereferences the NULL pointer. Add a NULL check after em_cpu_get() and return 0 if unavailable, matching the existing fallback behavior in __dtpm_cpu_setup(). [ rjw: Drop an excess empty code line ]
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38611 - Linux Kernel vmci Information Leak Vulnerability

CVE ID : CVE-2025-38611
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: vmci: Prevent the dispatching of uninitialized payloads The reproducer executes the host's unlocked_ioctl call in two different tasks. When init_context fails, the struct vmci_event_ctx is not fully initialized when executing vmci_datagram_dispatch() to send events to all vm contexts. This affects the datagram taken from the datagram queue of its context by another task, because the datagram payload is not initialized according to the size payload_size, which causes the kernel data to leak to the user space. Before dispatching the datagram, and before setting the payload content, explicitly set the payload content to 0 to avoid data leakage caused by incomplete payload initialization.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38612 - Linux Kernel Fbtft Framebuffer Memory Leak Vulnerability

CVE ID : CVE-2025-38612
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: staging: fbtft: fix potential memory leak in fbtft_framebuffer_alloc() In the error paths after fb_info structure is successfully allocated, the memory allocated in fb_deferred_io_init() for info->pagerefs is not freed. Fix that by adding the cleanup function on the error path.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38613 - Linux Kernel GPib Buffer Overflow

CVE ID : CVE-2025-38613
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: staging: gpib: fix unset padding field copy back to userspace The introduction of a padding field in the gpib_board_info_ioctl is showing up as initialized data on the stack frame being copyied back to userspace in function board_info_ioctl. The simplest fix is to initialize the entire struct to zero to ensure all unassigned padding fields are zero'd before being copied back to userspace.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38614 - Linux Kernel Eventpoll Recursive Depth Unlimited Link Formation Vulnerability

CVE ID : CVE-2025-38614
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded recursion Ensure that epoll instances can never form a graph deeper than EP_MAX_NESTS+1 links. Currently, ep_loop_check_proc() ensures that the graph is loop-free and does some recursion depth checks, but those recursion depth checks don't limit the depth of the resulting tree for two reasons: - They don't look upwards in the tree. - If there are multiple downwards paths of different lengths, only one of the paths is actually considered for the depth check since commit 28d82dc1c4ed ("epoll: limit paths"). Essentially, the current recursion depth check in ep_loop_check_proc() just serves to prevent it from recursing too deeply while checking for loops. A more thorough check is done in reverse_path_check() after the new graph edge has already been created; this checks, among other things, that no paths going upwards from any non-epoll file with a length of more than 5 edges exist. However, this check does not apply to non-epoll files. As a result, it is possible to recurse to a depth of at least roughly 500, tested on v6.15. (I am unsure if deeper recursion is possible; and this may have changed with commit 8c44dac8add7 ("eventpoll: Fix priority inversion problem").) To fix it: 1. In ep_loop_check_proc(), note the subtree depth of each visited node, and use subtree depths for the total depth calculation even when a subtree has already been visited. 2. Add ep_get_upwards_depth_proc() for similarly determining the maximum depth of an upwards walk. 3. In ep_loop_check(), use these values to limit the total path length between epoll nodes to EP_MAX_NESTS edges.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-38615 - "NTFS3 Linux Kernel Live Inode Eviction Vulnerability"

CVE ID : CVE-2025-38615
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: cancle set bad inode after removing name fails The reproducer uses a file0 on a ntfs3 file system with a corrupted i_link. When renaming, the file0's inode is marked as a bad inode because the file name cannot be deleted. The underlying bug is that make_bad_inode() is called on a live inode. In some cases it's "icache lookup finds a normal inode, d_splice_alias() is called to attach it to dentry, while another thread decides to call make_bad_inode() on it - that would evict it from icache, but we'd already found it there earlier". In some it's outright "we have an inode attached to dentry - that's how we got it in the first place; let's call make_bad_inode() on it just for shits and giggles".
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-51506 - HRForecast Suite SmartLibrary SQL Injection Vulnerability

CVE ID : CVE-2025-51506
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : In the smartLibrary component of the HRForecast Suite 0.4.3, a SQL injection vulnerability was discovered in the valueKey parameter. This flaw enables any authenticated user to execute arbitrary SQL queries, via crafted payloads to valueKey to the api/smartlibrary/v2/en/dictionaries/options/lookup endpoint.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Tue, 19 Aug 2025 17:15:00 GMT

read more

CVE-2025-52478 - n8n Cross-Site Scripting (XSS) Vulnerability

CVE ID : CVE-2025-52478
Published : Aug. 19, 2025, 5:15 p.m. | 1 hour, 37 minutes ago
Description : n8n is a workflow automation platform. From 1.77.0 to before 1.98.2, a stored Cross-Site Scripting (XSS) vulnerability was identified in n8n, specifically in the Form Trigger node's HTML form element. An authenticated attacker can inject malicious HTML via an